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We propose a generic termination proof method for rewriting under strategies, based on an ex- 
plicit induction on the termination property. Rewriting trees on ground terms are modeled by 
proof trees, generated by alternatively applying narrowing and abstracting steps. The induction 
principle is applied through the abstraction mechanism, where terms are replaced by variables 
representing any of their normal forms. The induction ordering is not given a priori, but defined 
with ordering constraints, incrementally set during the proof. Abstraction constraints can be used 
to control the narrowing mechanism, well known to easily diverge. The generic method is then 
instantiated for the innermost, outermost and local strategies. 
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1. INTRODUCING THE PROBLEM 

Rewriting techniques are now widely used in automated deduction, especially to 
handle equality, as well as in programming, in functional, logical or rule-based 
languages. Termination of rewriting is a crucial property, important in itself to 
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guarantee a result in a finite number of steps, but it is also required to decide prop- 
erties like confluence and sufficient completeness, or to allow proofs by consistency. 
Existing methods for proving termination of rewrite systems essentially tackle the 
termination problem on free term algebras for rewriting without strategies. 

Most are based on syntactic or semantic noetherian orderings containing the 
rewriting relation induced by the rewrite system [Plaistcd 1978; Lankford 1979; 
Kamin and Levy 1980; Dershowitz 1982; Ben Cherifa and Lescanne 1987; Der- 
showitz and Hoot 1995; Borelleras et al. 2000]. Other methods consist in trans- 
forming the termination problem of a rewrite system into the dccrcasingncss prob- 
lem of another rewrite system or of pairs of terms, then handled with techniques 
of the previous category. Examples are semantic labelling [Zantema 1995], and 
the dependency pair method [Arts and Gicsl 2000; Gicsl et al. 2003]. For most 
approaches, finding an appropriate ordering is the key problem, that often comes 
down to solving a set of ordering constraints. 

In the context of proof environments for rule-based programming languages, such 
as ASF-FSDF [Klint 1993], Maude [Clavel et al. 1996], CafeOBJ [Futatsugi and Nak- 
agawa 1997], ELAN [Borovansky et al. 1998], or TOM [Moreau et al. 2003], where 
a program is a rewrite system and the evaluation of a query consists in rewriting 
a ground expression, more specific termination proof tools are required, to allow 
termination proofs on ground terms, and under specific reduction strategies. There 
are still few results in this domain. To our knowledge, methods have only been 
given on the free term algebra with the innermost strategy [Arts and Giesl 1996; 
Giesl and Middeldorp 2003] and for the context-sensitive rewriting [Lucas 2002], 
which involves particular kinds of local strategies [Lucas 2001]. In previous works, 
we already have obtained termination results on ground terms for the innermost 
strategy [Gnaedig et al. 2001; Fissore et al. 2002a], for general local strategies on 
the operators [Fissore et al. 2001], and for the outermost strategy [Fissore et al. 
2002b]. 

In this paper, we propose a generic proof principle, based on an explicit induction 

mechanism on the termination property, which is a generalization of our three 
previous results. We then show how it can be instantiated to give an effective 
termination proof algorithm for the innermost strategy, the outermost strategy, and 
local strategies on operators. This generalizing work allowed not only to propose a 
generic version of our proof method, but also to considerably simplify the technical 
features of the algorithms initially designed for the different strategies. 

The three above strategies have been chosen for their relevance to programming 
languages. The most widely used innermost strategy consists in rewriting always at 
the lowest possible positions. It is often used as a built-in mechanism in evaluation 
of rule-based or functional languages. In addition, for non-overlapping or locally 
confiuent overlay systems [Gramlich 1995], or systems satisfying critical peak condi- 
tions [Gramlich 1996] , innermost termination is equivalent to standard termination 
(i.e. termination for standard rewriting, which consists in rewriting without any 
strategy) . As proved in [Krishna Rao 2000] , termination of rewriting is equivalent 
for the leftmost innermost and the innermost strategies. 

The outermost strategy for evaluating expressions in the context of programming 
is essentially used when one knows that computations can be non-terminating. The 
intuition suggests that rewriting a term at the highest possible position gives more 
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chance than with another strategy to lead to an irreducible form. Indeed, outer- 
most rewriting may succeed when innermost fails, as illustrated by the expression 
second{dec{l), 0), with the rewrite rules second{x, y) y and dec{x) dec{x — 1) 
on integers. Innermost rewriting fails to terminate, because it first evaluates dec{l) 
into rfec(O), dec{—l), and so on. Outermost rewriting, however, gives in one 
rewriting step. Moreover, outermost derivations are often shorter : in our example, 
to reduce second{u,v), one does not need to reduce u, which can lead to infinite 
computations or, at least, to a useless evaluation. This advantage makes the out- 
ermost strategy an interesting strategy for rule-based languages, by allowing the 
interpreters to be more efficient, as well as for theorem proving, by allowing the 
rewriting-based proofs to be shorter. 

Outermost computations are of interest in particular for functional languages, 
where interpreters or compilers generally involve a strategy for call by name. Of- 
ten, lazy evaluation is used instead: operators are labelled in terms as lazy or 
eager, and the strategy consists in reducing the eager subterms only when their 
reduction allows a reduction step higher in the term [Nguyen 2001]. However, lazy 
evaluation may diverge while the outermost computation terminates, which gives 
an additional motivation for studying outermost termination. For instance, let 
us consider the evaluation of the expression m/(0) with the following two rules : 
cons{x, cons{y,z)) — > big, inf{x) cons{x,inf{s{x))). If inf is labelled as eager, 
m/(G) is reduced to con,s(0, m/(s(G))), and then, since application of the first rule 
fails, the sub-expression m/(s(0)) has to be evaluated before considering the whole 
expression, which leads to an infinite evaluation. Evaluated in an outermost man- 
ner, m/(0) is also reduced to cons (0, inf {s{0))), but then m/(s(G)) is reduced to 
cons{s{0), ot/(s(s(0)))), and the whole expression is reduced to big. Lazy termina- 
tion of functional languages has already been studied (see for example [Panitz and 
Schmidt-Schauss 1997]), but to our knowledge, except our previously cited work, 
no termination proof method exists for specifically proving outermost termination 
of rewriting. 

Local strategies on operators are used in particular to force the evaluation of 
expressions to terminate. A famous example is the evaluation of a recursive function 
defined with an if_then-else expression, for which evaluating the first argument in 
priority may allow to avoid divergence. 

This kind of strategy is allowed by languages such that 0BJ3, CafeOBJ or Maude, 
and studied in [Eker 1998] and [Nakamura and Ogata 2000]. It is defined in the 
following way: to any operator / is attached an ordered list of integers, giving the 
positions of the subterms to be evaluated in a given term, whose top operator is /. 
For example, the rewrite system 



using the conditional expression, does not terminate for the standard rewriting 
relation, but does with the following strategy: LS{ite) = [1; 0], LS{f) = LS{zero) = 




if -then-else{zero{x), g{x), f{h{x))) 
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LS{h) = [1;0] and LS{g) = LS(i) = [1], where ite denotes if -then-else for short. 

Local strategies have to be compared with context-sensitive rewriting, where 
rewriting is also allowed at some specified positions only in the terms: as local 
strategies specify in addition an ordering on these rewriting positions, they are 
more specific. 

The termination problem for these various strategies is always different: in [Fis- 
sore et al. 2002c] , the interested reader can find examples showing that termination 
for one of these strategies does not imply termination for any other of them. A 
better knowledge of these differences would be interesting, and could help to choose 
the good one when programming in these languages. 

Despite of these distinct behaviours, the termination proofs we propose rely on 
a generic principle and a few common concepts, that arc emphasized in this paper. 
Our approach is based on an explicit induction mechanism on the termination 
property. The main idea is to proceed by induction on the ground term algebra with 
a noetherian ordering assuming that for any t' such that t )^ t' , t' terminates, 
i.e. there is no infinite derivation chain starting from t' . The general proof principle 
relies on the simple idea that for establishing termination of a ground term t, it is 
enough to suppose that subterms of t arc smaller than t for this ordering, and that 
rewriting the context only leads to terminating chains. Iterating this process until 
a non-reducible context is obtained establishes termination of t. 

Unlike classical induction proofs, where the ordering is given, we do not need 
to define it a priori. We only have to check its existence by ensuring satisfiability 
of ordering constraints incrementally set along the termination proof. Thanks to 
the power of induction, the generated constraints are often simpler to solve than 
for other approaches, and even, in many cases, do not need any constraint solving 
algorithm. 

Directly using the termination notion on terms has also been proposed in [Goubault- 
Larreck 2001], but for inductively proving well-foundedness of binary relations, 
among which path orderings. 

In order to explain the basic idea of this work, let us consider the classical exam- 
ple, due to Toyama, of a rewrite system that does not terminate, but terminates 
with the innermost strategy: 

/(0, 1,3;) f{x,x,x) 
g{x,y) -*x 

Let us prove by induction on the set T{J^) of ground terms built on .F = 
{0,1,/, 5} with a noetherian ordering y, that any term t innermost terminates 
(i.e. there is no infinite innermost rewriting chain starting from t). The terms of 
T{!F) are 0, 1, or terms of the form f{t\,t2,tz), or g{t\,t2), with t\,t2,tz G T{J-). 
The terms and 1 are obviously terminating. 

Let us now prove that f{ti,t2,tj,) is innermost terminating. First, /(ti, 42,^3) >- 
ti,t2,t3 for any term ordering with the subterm property (i.e. any term is greater 
than any of its subterms). Then, by induction hypothesis, assume that ti,t2 and 

innermost terminate. Let tij, t2i, t^l be respectively any of their normal forms. 
The problem is then reduced to innermost termination of all f{tii,t2i,t3l). If 
tii = , t2i = 1, then /(O, Ijtsi) only rewrites at the top position into /(tsij^si, 

ACM Transactions on Computational Logic, Vol. X, No. X, Date XXXX. 



Termination of rewriting strategies: a generic approach 



5 



tzi), which is in normal form. Else /(iii, f2j,, isj.) is already in normal form. 

Let us finally prove that g{ti,t2) is innermost terminating. First, g{t-i,t2) >- h, 
t2- Then, by induction hypothesis, assume that ti and ^2 innermost terminate. Let 
til,t2l be respectively any of their normal forms. It is then sufficient to prove that 
g{tii,t2i) is innermost terminating. The term g{til,t2i) rewrites either into til 
or into ^2! at the top position, with both til ^nd t2l in normal form. Remark that 
for >- in this proof, any ordering having the subterm property is convenient. Our 
goal is to provide a procedure implementing such a reasoning. 

The paper is organized as follows: in Section 2, the backgroimd is presented. 
Section 3 introduces the inductive proof principle of our approach. Section 4 gives 
the basic concepts of our inductive proof mechanism based on abstraction and 
narrowing, and the involved constraints. Section 5 presents the generic termination 
proof procedure that is further applied to different rewriting strategies. In Section 

6, the mechanism is instantiated for the case of innermost termination. In Section 

7, the procedure is applied to outermost termination. Finally, in section 8, the 
same method is adapted to the case of local strategies. 

2. THE BACKGROUND 

We assume that the reader is familiar with the basic definitions and notations of 
term rewriting given for instance in [Dershowitz and Jouannaud 1990] . T(.F, X) is 
the set of terms built from a given finite set of function symbols / having arity 

n £ N (denoted f : n), and a set X of variables denoted x,y '^{^) is the set 

of ground terms (without variables). The terms reduced to a symbol of arity are 
called constants. Positions in a term are represented as sequences of integers. The 
empty sequence e denotes the top position. The symbol at the top position of a 
term t is written top{t). Let p and p' be two positions. The position p is said to 
be (a strict) prefix of p' (and p' suffix of p) if p' = pX, where A is a non-empty 
sequence of integers. Given a term t, Var{t) is the set of variables of t, 0{t) is the 
set of positions in t, inductively defined as follows: 0{t) = {e} if t £ X, 0{t) = 
{e} U {i.p \ 1 < i < n and p £ 0{ti)l if t = f{ti, . . . , t„). This set is partitioned 
into 0{t) = {p £ 0{t) I t\p ^ X} and Ov{t) = {p £ 0{t) | t\p £ X} where the 
notation t\p stands for the subterm of t at position p. Up £ 0{t), then t[t']p denotes 
the term obtained from t by replacing the subterm at position p by the term t'. 

A substitution is an assignment from X to T[J^, X), written u = (x h-s- t) . . . (y i— > 
u). It uniquely extends to an endomorphism of T(.F, X). The result of applying a 
to a term t £ T{T, X) is written a{t) or at. The domain of cr, denoted Dom{a) is 
the finite subset of X such that ax ^ x. The range of cr, denoted Ran{a), is defined 
by Ran{a) = Uxei?om(cr) Vo-riax). We have in addition Dom{a) fl Ran{a) = 0. A 
ground substitution or instantiation is an assignment from X to T(T\ Id denotes 
the identity substitution. The composition of substitutions Ui followed by a2 is 
denoted a2ai. Given a subset Xi of X, we write for the restriction of a to 
the variables of A'l, i.e. the substitution such that Dom{axi) ^ -^i ^^'^ ^ 
Dom{axi) ■ o'XiX = ax. 

Given a set TZ of rewrite rules (a set of pairs of terms of T(.F, X), denoted I — > r, 
such that Var{r) C Var(l)) or rewrite system on T{T, X), a fimction symbol in T 
is called a constructor iff it does not occur in TZ at the top position of a left-hand 
side of rule, and is called a defined function symbol otherwise. The set of defined 
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function symbols of J- for 7?, is denoted by 2?e/^ (7?, is omitted when there is no 
ambiguity). 

The rewriting relation induced by 7?, is denoted by -^"^ {-^ if there is no ambiguity 
on 7?.), and defined by s ^ t iff there exists a substitution a and a position -p in 
s such that s|p = al for some rule Z — > r of 7?., and t = s\ar\p. This is written 
s -^^^^'"^ t where either p cither I r cither a or TZ may be omitted; s|p is called 
a redex. The reflexive transitive closure of the rewriting relation induced by Ti. is 
denoted by ^n- if t t' and t' cannot be rewritten anymore, then t' is called a 
normal form of t and denoted by i|. Remark that given t, t| may be not unique. 

Let 7?. be a rewrite system on T{J^, X). A term t is narrowed into t' , at the non- 
variable position p, using the rewrite rule Z — » r of 7?. and the substitution cr, when a 
is a most general unifier of t\p and and t' = (j{t[r]p). This is denoted t ^'^j^^^'" t' 
where either p, either / — > r or a may be omitted. It is always assumed that there is 
no variable in common between the rule and the term, i.e. that Var{l)f\Var{t) = 0. 

An ordering >- on T(T ^ X) is said to be noetherian iff there is no infinite decreas- 
ing chain for this ordering. It is ^-stable iff for any pair of terms t,t' of T(.F, X) , for 

any context /( ), t >- t' implies f{. . .t . . .) >- f{...t'.. .). It has the subterm 

property iff for any t of T(jr, X), /(. . .t . . .) y t. Observe that, for T and X finite, 
if >- is .F-stable and has the subterm property, then it is noetherian [Kruskal I960]. 
If, in addition, y is stable under substitution (for any substitution a, any pair of 
terms tj/ £ T{!F,X), t y t' implies at >- at'), then it is called a simplification 
ordering. Let t be a term of T[!F) ; let us recall that t terminates if and only if any 
rewriting derivation (or derivation chain) starting from t is finite. 

Rewriting strategies arc in general aimed at reducing the derivation tree (for 
standard rewriting) of terms. The following definition expresses that rewriting a 
term with a strategy S can only give a term that would be obtained with the 
standard rewriting relation. 

Definition 2.1 (REWRITING strategy). Let 7^ a rewrite system on T(.F, A"). A 
rewriting strategy S for 72. is a mapping S : T(.F, X) — > T{J^, X) such that for every 
t e T{J^, X), S{t) = t' (we write t t') where t' is such that t t'. 

Definition 2.2 (innermost/outermost strategy). Let IZ a rewrite system 
on T{J^,X). The innermost (resp. outermost) strategy is a rewriting strategy 
written 5' = Innermost (resp. S = Outermost) such that for any term t € T(T , X), 
if t -^^ t', the rewriting position p in t is such that there is no suffix (resp. prefix) 
position p' of p such that t rewrites at position p'. 

Rewriting strategies may be more complex to define. This is the case for local 
strategies on operators, used in the OBJ-like languages. We use here the notion of 
local strategy as expressed in [Goguen et al. 1992] and studied in [Eker 1998]. 

Definition 2.3 (LS-strategy). An LS-strategy is given by a function LS from 

to the set of lists of integers £(N), that induces a rewriting strategy as follows. 

Given a LS-strategy such that LS{f) = \pi, . . . ,pk], Pi & [0..arity{f)] for all 
i e [l..fc], for some symbol f & T, normalizing a term t = f{ti, . . . , tm) G T{J^, X) 
with respect to LS{f) = [pi, . . . , pk], consists in normalizing all subterms of t at 
positions pi, . . . ,pk successively, according to the strategy. If there exists i G [1..A:] 
such that pi, . . . ,Pi-i 7^ and p, = (0 is the top position), then 

ACM Transactions on Computational Logic, Vol. X, No. X, Date XXXX. 



Termination of rewriting strategies: a generic approach 



7 



— if the current term f obtained after normalizing t\pj^, . . . ,t\p._^ is reducible at 
the top position into a term g{ui, . . . , then g{ui, . . . , «„) is normalized with 
respect to LS{g) and the rest of the strategy [pi+i, . . . , Pk] is ignored, 

— if t' is not reducible at the top position, then t' is normalized with respect to 
Pi+i, ■ ■ ■ ,Pk- 

Let t be a term of T{J^); we say that t terminates (w.r.t. to the strategy S) if and 
only if every rewriting derivation (or derivation chain) (w.r.t. to the strategy S) 
starting from t is finite. Given a term t, we call normal form (w.r.t. to the strategy 
S) or S-normal form of t, denoted ti, any irreducible term, if it exists, such that 

t tl. 

3. THE INDUCTIVE PROOF PROCESS 
3.1 Lifting rewriting trees into proof trees 

For proving that a term t of T{J-) terminates (for the considered strategy), we 
proceed by induction on T(^) with a noetherian ordering assuming that for any 
t' such that t y t', t' terminates. To warrant non emptyness of T{J^), we assume 
that T contains at least a constructor constant. 

The main intuition is to observe the rewriting derivation tree (for the considered 
strategy) starting from a ground term t G T{J^) which is any instance of a term 
g{xi, . . . , x,fn), for some defined function symbol g G T>ef , and variables xi, . . . , x^. 
Proving termination on ground terms amounts proving that all rewriting derivation 
trees have only finite branches, using the same induction ordering >- for all trees. 

Each rewriting derivation tree is simulated, using a lifting mechanism, by a proof 
tree, developed from g{xi, . . . ,Xm) on T{!F,X), for every g € Vef, by alterna- 
tively using two main operations, namely narrowing and abstraction, adapted to 
the considered rewriting strategy. More precisely, narrowing schematizes all rewrit- 
ing possibilities of terms. The abstraction process simulates the normalization of 
subterms in the derivations, according to the strategy. It consists in replacing these 
subtcrms by special variables, denoting one of their normal forms, without com- 
puting them. This abstraction step is performed on subterms that can be assumed 
terminating by induction hypothesis. 

The schematization of ground rewriting derivation trees is achieved through con- 
straints. The nodes of the developed proof trees are composed of a current term 
of 'T{T, X), and a set of ground substitutions represented by a constraint progres- 
sively built along the successive abstraction and narrowing steps. Each node in a 
proof tree schematizes a set of ground terms: the ground instances of the current 
term, that are solutions of the constraint. 

The constraint is in fact composed of two kinds of formulas: ordering constraints, 
set to warrant the validity of the inductive steps, and abstraction constraints com- 
bined to narrowing substitutions, which effectively define the relevant sets of ground 
terms. The latter are actually useful for controlling the narrowing process, well 
known to easily diverge. 

The termination proof procedures given in this paper are described by deduc- 
tion rules applied with a special control Strat— Rules {S), depending on the stud- 
ied rewriting strategy S. To prove termination of TZ on any term t € T[J^) 
w.r.t. the strategy S, we consider a so-called reference term tref = g{xi, ■ ■ ■ ,Xm) 

ACM Transactions on Computational Logic, Vol. X, No. X, Date XXXX. 



8 • Isabelle Gnaedig and Helene Kirchner 

for each defined symbol g G T>ef, and empty sets T of constraints. Applying 
the deduction rules according to the strategy Strut— Rules (S) to the initial state 

{{g{xi, . . . ,Xm)}, T, T) builds a proof tree, whose nodes are the states produced 
by the inference rules. Branching is produced by the different possible narrowing 
steps. 

Termination is established when the procedure terminates because the deduction 
rules do not apply anymore and all terminal states of all proof trees have an empty 
set of terms. 

3.2 A generic mechanism for strategies 

As said previously, we consider any term of T{T) as a ground instance of a term 
t of T{J-,X) occurring in a proof tree issued from a reference term trej. Using 
the termination induction hypothesis on T(JF) naturally leads us to simulate the 
rewriting relation by two mechanisms: 

— first, some subterms tj of the current term t of the proof tree are supposed to 
have only terminating ground instances, by induction hypothesis, if Otref >- Otj 
for the induction ordering >- and for every 6 solution of the constraint associated 
to t. They are replaced in t by abstraction variables Xj representing respectively 
one of their normal forms tji. Reasoning by induction allows us to only suppose 
the existence of the tj J, without explicitly computing them; 

— second, narrowing (w.r.t. to the strategy S) the resulting term u = ^[-^j]je{ii,...,ip} 
(where ii, . . . ,ip are the positions of the abstracted subterm tj in t) into terms 
V, according to the possible instances of the Xj. This corresponds to rewriting 
(w.r.t. to the strategy S) the possible ground instances of u (characterized by 
the constraint associated to u) in all possible ways. 

In general, the narrowing step of u is not unique. We obviously have to consider 
all terms v such that 6u rewrites into 9v, which corresponds to considering all 
narrowing steps from u. 

Then the termination problem of the ground instances of t is reduced to the 
termination problem of the ground instances of v. If Otref >- Gv for every ground 
substitution d solution of the constraint associated to v, by induction hypothesis, 
6v is supposed to be terminating. Else, the process is iterated on v, until getting a 
term t' such that either 6tref >- Ot', or 6t' is irreducible. 

Wc introduce in the next section the necessary concepts to formalize and auto- 
mate this technique. 

4. ABSTRACTION, NARROWING, AND THE INVOLVED CONSTRAINTS 

4.1 Ordering constraints 

The induction ordering is constrained along the proof by imposing constraints be- 
tween terms that must be comparable, each time the induction hypothesis is used 
in the abstraction mechanism. As we are working with a lifting mechanism on 
the proof trees with terms of T(^, X), we directly work with an ordering y-p on 
T{J^, X) such that t y-p u implies 6t >- 6u, for every 6 solution of the constraint 
associated to u. 

So inequalities of the form t > ui,...,Um are accumulated, which are called 
ordering constraints. Any ordering y-p on T{T, X) satisfying them and which is 
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stable under substitution fulfills the previous requirements on ground terms. The 
ordering y-p, defined on T{J^, X), can then be seen as an extension of the induction 
ordering y, defined on T{J^). For convenience, the ordering y-p will also be written 

It is important to remark that, for establishing the inductive termination proof, 
it is sufficient to decide whether there exists such an ordering. 

Definition 4.1.1 (ORDERING constraint). An ordering constraint is a pair of 
terms of T(.F, X) noted {t > t'). It is said to be satisfiable if there exists an ordering 
>-, such that for every instantiation 9 whose domain contains Var{t) U Var{t'), we 
have 6t y 6t'. We say that >~ satisfies {t > t'). 

A conjunction C of ordering constraints is satisfiable if there exists an ordering 
satisfying all conjuncts. The empty conjunction, always satisfied, is denoted by T. 

Satisfiability of a constraint conjunction C of this form is undecidable. But 
a sufficient condition for an ordering y to satisfy C is that >- is stable under 
substitution and t y t' for any constraint t> t' oi C. 

4.2 Abstraction 

To abstract a term t at positions ii,. . . ,ip, where the t\j are supposed to have 
a normal form t\ji, we replace the t\j by abstraction variables Xj representing 
respectively one of their possible normal forms. Let us define these special variables 
more formally. 

Definition 4.2.1. Let Xa be a set of variables disjoint from X. Symbols of Xa 
arc called abstraction variables. Substitutions and instantiations are extended to 
T{J^,X U Xa) in the following way: let X G Xa] for any substitution a (resp. 
instantiation 6) such that X e Dom{a), aX (resp. 6X) is in S-normal form. 

Definition 4.2.2 (term abstraction). The term i[t|j]je{n,...,ip} is said to be 
abstracted into the term u (called abstraction of t) at positions {ii, . . . , ip} iff u = 
t[-^j]je{ii,...,ip}i where the Xj,j G {ii, . . . ,ip} are fresh distinct abstraction vari- 
ables. 

Termination on T{!F) is proved by reasoning on terms with abstraction variables, 
i.e. on terms of T{T, X U Xa)- Ordering constraints arc extended to pairs of terms 
of T{J^, X D Xa)- When subterms t\j are abstracted by Xj, we state constraints on 
abstraction variables, called abstraction constraints to express that their instances 
can only be normal forms of the corresponding instances of t\j- Initially, they arc 
of the form ti = X where t G T(^, X U Xa), and X G Xa, but we will see later 
how they are combined with the substitutions used for the narrowing process. 

4.3 Narrowing 

After abstraction of the current term t into t[-'^j]je{ii,...,i }, we check whether the 
possible groimd instances of t[Xj]j^^i^^ arc reducible, according to the possible 
values of the instances of the Xj- This is achieved by narrowing je{ii, ...,«,,} • 

The narrowing relation depends on the considered strategy S and the usual def- 
inition needs to be refined. The first idea is to use innermost (resp. outermost) 
narrowing. Then, if a position p in a term t is a narrowing position, a suffix (resp. 
prefix) position of p cannot be a narrowing position too. However, if we consider 
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ground instances of t, we can have rewriting positions p for some instances, and p' 
for some other instances, such that p' is a suffix (resp. a prefix) of p. So, when 
narrowing at some position p, the set of relevant ground instances of t is defined 
by excluding the ground instances that would be narrowable at some suffix (resp. 
prefix) position of p, that we call ^-better position: a position 5-better than a po- 
sition p in i is a suffix position of p if S* is the innermost strategy, a prefix position 
oi p if S is the outermost strategy. Note that local strategies are not of the same 
nature, and there is no S-better position in this case. 

Moreover, to preserve the fact that a narrowing step of t schematizes a rewrit- 
ing step of possible ground instances of t, we have to be sure that an innermost 
(resp. outermost) narrowing redex in t corresponds to the same rewriting redex in a 
ground instance of t. This is the case only if, in the rewriting chain of the ground in- 
stance of t, there is no rewriting redex at a suffix position of variable of t anymore. 
So before each narrowing step, we schematize the longest rewriting chain of any 
ground instance of t, whose redexes occur in the variable part of the instantiation, 
by a linear variable renaming. Linearity is crucial to express that, in the previous 
rewriting chain, ground instances of the same variables can be reduced in different 
ways. For the innermost strategy, abstraction of variables performs this schemati- 
zation. For the outermost strategy, a reduction renaming will be introduced. For 
local strategies however, this variable renaming is not relevant. 

The ^-narrowing steps applying to a given term t are computed in the following 
way. After applying the variable renaming to t, we look at every position p of t 
such that t\p unifies with the left-hand side of a rule using a substitution a. The 
position p is a S'-narrowing position of t, iff there is no S-better position p' of t 
such that at\pi unifies with a left-hand side of rule. Then we look for every 5*- 
better position p' than pint such that at\p' narrows with some substitution a' and 
some rule /' — ^ r', and we set a constraint to exclude these substitutions. So the 
substitutions used to narrow a term have in general to satisfy a set of disequalities 
coming from the negation of previous substitutions. To formalize this point, we 
need the following notations and definitions. 

In the following, wc identify a substitution a — {xi i— > ti)...{xn i-^ tn) on 
T{J^, X U Xa) with the finite set of solved equations [xi = ti) A . . . A (x„ — tn), also 
denoted by the equality formula /\^{xi = ti), with Xi E X U Xa, ti G T{!F , X U Xa), 
where = is the syntactic equality. Similarly, we call negation ct of the substitution 
a the formula Vi(^i 7^ 

Definition 4.3.1 (CONSTRAINED SUBSTITUTION). A constrained substitution a 
is a formula ao A /\j \l ^, {xi^ ^ ti^), where cto is a substitution. 

Definition 4.3.2 (S'-narrowing). A term t e T{T,X U Xa) S-narrows into a 
term t' G T{J^,X\JXa) at the non- variable position p of t, using the rule ? — > r G 7^ 
with the constrained substitution a = cro^/\j^[i ^1 which is written t ^ t' 

iff 

o-o(0 = cro{t\p) and t' = (7o{t[r]p) 

where ctq is the most general unifier of t\p and I and (7j,j G [l..k] arc all most 
general unifiers of aot\p' and a left-hand side I' of a rule of TZ, for all position p' 
which are S'-better positions than p in t. 

ACM Transactions on Computational Logic, Vol. X, No. X, Date XXXX. 



Termination of rewriting strategies: a generic approach 



11 



It is always assumed that there is no variable in common between the rule and 
the term, i.e. that Var{l) f) Var{t) = 0. This requirement of disjoint variables is 
easily fulfilled by an appropriate renaming of variables in the rules when narrowing 
is performed. The most general unifier cto used in the above definition can be taken 
such that its range only contains fresh variables. Since we are interested in the 
narrowing substitution applied to the current term t, but not in its definition on 
the variables of the left-hand side of the rule, the narrowing substitutions can be 
restricted to the variables of the narrowed term t. 

The following lifting lemma, generalized from [Middeldorp and Hamoen 1994], 
ensures the correspondence between the narrowing relation, used during the proof, 
and the rewriting relation. 

Lemma 4.3.2 (S'-lifting Lemma). Let TZ be a rewrite system. Lets eT{J^,X), 
a a ground substitution such that as is S-reducible at a non variable position p of 
s, and y C X a set of variables such that Var{s) U Dom{a) C y. If as — >p t' , 
then there exist a term s' G T(.F, X) and substitutions l3,a = ao A Aje[i..fe] ^ ^^^/i 
that: 

2. Ps' = t', 

3. f3ao = a[y] 

4. (3 satisfies Aje[i..fe] 07 

where ctq is the most general unifier of s\p and I and aj,j € [l..k] are all most 
general unifiers of aos\p' and a left-hand side I' of a rule ofTZ, for all position p' 
which are S-better positions than p in s. 

4.4 Cumulating constraints 

Abstraction constraints have to be combined with the narrowing constrained sub- 
stitutions to characterize the ground terms schematized by the proof trees. A 
narrowing step effectively corresponds to a rewriting step of ground instances of 
u if the narrowing constrained substitution a is compatible with the abstraction 
constraint formula A associated to u (i.e. A A a is satisfiable) . Else, the narrowing 
step is meaningless. So the narrowing constraint attached to the narrowing step is 
added to A. Hence the introduction of abstraction constraint formulas. 

Definition 4.4.1 (abstraction constraint formula). An abstraction con- 
straint formula (ACF in short) is a formula Ai(^ii = i'i)^f\j{^j = i3)^f\k ("'fc 
t;; J, where ti,ti,tj,ui^,vi^ € T{J^,X U Xa), xj € X U Xa- 

Definition 4.4.2 (SATISFIABILITY OF AN ACF). An abstraction constraint for- 
mula /\i{tii = t'^) A Aj {xj =tj) A Afe V;^ 7^ ^'fc )' satisfiable iff there exists at 
least one instantiation such that Ai(^*iJ. = A l\j{Oxj = Otj) A Afe \/ i^i^^^i^^ ^ 
Ovi^ ) . The instantiation d is then said to satisfy the ACF A and is called solution 
of A. 

Integrating a constrained substitution a = ao A /\^ \J ^. (xj. ^ tj^ ) to an ACF A is 
done by adding the formula defining a to A, thus giving the formula A A a. For a 
better readability on examples, we can propagate a into A (by applying (Tq to A), 
thus getting instantiated abstraction constraints of the form tii = t^ from initial 
abstraction constraints of the form ti[ = Xi. 
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An ACF A is attached to each term u in the proof trees; its solutions characterize 
the interesting ground instances of this term, i.e. the 6u such that ^ is a solution 
of A. When A has no solution, the current node of the proof tree represents no 
ground term. Such nodes are then irrelevant for the termination proof. Detecting 
and suppressing them during a narrowing step allows to control the narrowing 
mechanism. So wc have the choice between generating only the relevant nodes of 
the proof tree, by testing satisfiability of A at each step, or stopping the proof on a 
branch on an irrelevant node, by testing unsatisfiability of A. These are both facets 
of the same question, but in practice, they are handled in different ways. 

Checking satisfiability of A is in general undecidable. The disequality part of an 
ACF is a particular instance of a disunification problem (a quantifier free equational 
formula), whose satisfiability has been addressed in [Comon 1991], that provides 
rules to transform any disunification problem into a solved form. Testing satisfi- 
ability of the equational part of an ACF is undecidable in general, but suflacient 
conditions can be given, relying on a characterization of normal forms. 

Unsatisfiability of A is also undecidable in general, but simple sufficient conditions 
can be used, very often applicable in practice. They rely on reducibility, unifiability, 
narrowing and constructor tests. 

According to Definition 4.4.2, an ACF Ai(^ii = Qf^lKji^j = tj) f\k\l iS'^h + 
vi^) is unsatisfiable if for instance, one of its conjunct t,| = t'^ is unsatisfiable, i.e. 
is such that Ot'^ is not a normal form of 9ti for any ground substitution 9. Hence, 
we get four automatable conditions for unsatisfiability of an abstraction constraint 
ti = t': 

Case 1:. t[ = t' , with t' reducible. Indeed, in this case, any ground instance of 

t' is reducible, and hence cannot be a normal form. 

Case 2:. t[ = t' A ... A t' I = t" , with t' and t" not unifiablc. Indeed, any 
ground substitution 9 satisfying the above conjunction is such that (1) 9tl = 9t' 
and (2) 9t' I = 9t" . In particular, (1) implies that 9t' is in normal form and hence 
(2) imposes 9t' — 9t" , which is impossible if t' and t" are not unifiablc. 

Case 3:. tl = t' where top(t) is a constructor, and top{t) ^ top(t'). Indeed, if the 
top symbol of t is a constructor s, then any normal form of any ground instance of t 

is of the form s{u), where u is a ground term in normal form. The above constraint 
is therefore unsatisfiable if the top symbol of is 5, for some g ^ s. 

Case 4-- ti = t' with t, t' S T{J^, Xa) not unifiablc and /\f^Sy vl = t' unsatisfi- 
able. This criterion is of interest if unsatisfiability of each conjunct vi = t' can be 
shown with one of the four criteria we present here. 

So both satisfiability and unsatisfiability checks need to use sufficient conditions. 
But in the first case, the proof process stops with failure as soon as satisfiability 
of A cannot be proved. In the second one, it can go on, until A is proved to be 
unsatisfiable, or until other stopping conditions are fulfilled. 

Let us now come back to ordering constraints. If we check satisfiability of A 
at each step, we only generate states in the proof trees, that represent non empty 
sets of ground terms. So in fact, the ordering constraints of C have not to be 
satisfied for every ground instance, but only for those instances that are solution 
of A, hence the following definition, that can be used instead of Definition 4.1.1, 

ACM Transactions on Computational Logic, Vol. X, No. X, Date XXXX. 



Termination of rewriting strategies: a generic approach • 13 

when constraints of this definition cannot be proved satisfiable, and solutions of A 
can easily be characterized. 

Definition 4.4.3 (constraint problem). Let A be an abstraction constraint 

formula and C a conjunction of ordering constraints. The constraint problem C/A 
is satisfied by an ordering >- iff for every instantiation 6 satisfying A, then 9t >- 9t' 
for every conjunct t > t' of C. C/A is satisfiable iff there exists an ordering >- as 
above. 

Note that C/A may be satisfiable even if A is not. 
4.5 Relaxing the induction hypothesis 

It is important to point out the flexibility of the proof method that allows the 
combination with auxiliary termination proofs using different techniques: when the 
induction hypothesis cannot be applied on a term u, i.e. when it is not possible to 
decide whether the ordering constraints arc satisfiable, it is often possible to prove 
termination (for the considered strategy) of any ground instance of u by another 
way. In the following we use a predicate TERMIN{S, u) that is true iff every ground 
instance of u terminates for the considered strategy S. 

In particular, TERMIN [S , u) is true when every instance of u is in normal form. 
This is the case when u is not narrowable, and all variables of u are in Xa- Indeed, 
by Lemma 4.3.1 and Definition 4.2.1, every instance of u is in normal form. This 
includes the cases where u itself is an abstraction variable, and where u is a non 
narrowable ground term. 

Every instance of a narrowable u whose variables arc all in Xa, and whose nar- 
rowing substitutions are not compatible with A, is also in normal form. As said 
in Section 4.4, these narrowing possibilities do not represent any reduction step for 
the ground instances of u, which are then in normal form. 

Otherwise, in many cases, for proving that TERMIN{S, u) is true, the notion of 
usable rules [Arts and Giesl 1996] is relevant. Given a rewrite system TZ on T{T, X) 
and a term t G T{J', X U Xa), the usable rules of t arc a subset of TZ, which is a 
computable superset of the rewrite rules that are likely to be used in any rewriting 
chain (for the standard strategy) starting from any ground instance of t, until its 
ground normal forms arc reached, if they exist. 

Proving termination of any ground instance of u then comes down to proving 
termination of its usable rules, which is in general much easier than proving termi- 
nation of the whole rewrite system TZ. In general, we try to find a simplification 
ordering that orients these rules. Thus any ground instance at is bound to 
terminate for the standard rewriting relation, and then for the rewriting strategy 
S. Indeed, \i at ti t2 ^ ■ ■ then, thanks to the previous hypotheses, 
at ti ;^jv t2 >-jv • • • and, since the ordering is noetherian, the rewriting 
chain cannot be infinite. As a particular case, when a simplification ordering can 
be found to orient the whole rewrite system, it also orients the usable rules of any 
term, and our inductive approach can also conclude to termination. If an appro- 
priate simplification ordering cannot be found, termination of the usable rules may 
also be proved with our inductive process itself. The fact that the induction or- 
dering used for usable rules is independent of the main induction ordering, makes 
the proof very flexible. Complete results on usable rules for the innermost strategy 
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are given in Section 6.2. For the outermost and local strategies, this is developed 
in [Fissore et al. 2002b] and [Fissore et al. 2001]. 

5. THE TERMINATION PROOF PROCEDURE 
5.1 Strategy-independent proof steps 

We are now ready to describe the different steps of the proof mechanism presented 
in Section 3. 

The proof steps generate proof trees in transforming 3-tuples (T, A, C) where 

— T is a set of terms of T{T, X U Xa), containing the current term u whose ter- 
mination has to be proved. T is cither a singleton or the empty set. For local 
strategies, the term is enriched by the list of positions where u has to be evalu- 
ated, LS{top{u)). This is denoted by u^s(top{u))_ 

— A is a conjunction of abstraction constraints. At each abstraction step, con- 
straints of the form uj, = X, u e T{T,X U Xa),X e Xa are stated for each 
subterm term t abstracted into a new abstraction variable X. At each narrowing 
step with narrowing substitution cr, A is replaced by A A cr. 

— C is a conjimction of ordering constraints stated by the abstraction steps. 

Starting from initial states (T = {trej = g{xi, . . . , Xm)}, A = T ,C = T), where 
g e Vef, the proof process consists in iterating the following generic steps: 

— The first step abstracts the current term t at given positions ii,..., ip. If 

the conjunction of ordering constraints /\^ t,.ey > t\j is satisfiable for some j G 
{ii, . . . , ip}, we suppose, by induction, the existence of irreducible forms for the 
t\j. We must have TERMIN{S,t\j) for the other t\j. Then, t\i^, . . . ,t\i^ are 
abstracted into abstraction variables Xi^ , • • • , Xi^ . The abstraction constraints 
t\i^l = Xjj, . . . = X^^ are added to the ACF A. We call that step the 

abstract step. 

— The second step narrows the resulting term u in one step with all possible rewrite 
rules of the rewrite system TZ, and all possible substitutions a, into terms v, 
according to Definition 4.3.2. This step is a branching step, creating as many 
states as narrowing possibilities. The substitution a is added to A. This is the 
narrow step. 

— We then have a stop step halting the proof process on the current branch of 
the proof tree, when A is detected to be unsatisfiable, or when the ground in- 
stances of the current term can be stated terminating for the considered strategy. 
This happens when the whole current term u can be abstracted, i.e. when the 
induction hypothesis applies on it, or when we have TERMIN{S, u). 

The satisfiability and unsatisfiability tests of A are integrated in the previously 
presented steps. If testing unsatisfiability of A is chosen, the unsatisfiability test 
is integrated in the stop step. If testing the satisfiability of A is chosen, the test 
is made at each attempt of an abstraction or a narrowing step, which are then 
effectively performed only if A can be proved satisfiable. Otherwise, the proof 
cannot go on anymore and stops with failure. 

As wc will see later, for a given rewriting strategy S, these generic proof steps are 
instantiated by more precise mechanisms, depending on S, and taking advantage 
of its specificity. We will define these specific instances by inference rules. 
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5.2 Discussion on abstraction and narrowing positions 

There are different ways to simulate the rewriting relation on ground terms, using 
abstraction and narrowing. 

For example, the abstraction positions can be chosen so that the abstraction 
mechanism captures the greatest possible number of rewriting steps. For that, we 
abstract the greatest subterms in the term, that are the immediate subterms of the 
term. Then, if a narrowing step follows, the abstracted term has to be narrowed 
in all possible ways at the top position only. This strategy may yield a deadlock 
if some of the direct subterms cannot be abstracted. We can instead abstract all 
greatest possible subterms of t = /(ti, . . . , i„). More concretely, we try to abstract 
ti,...,tn and, for each ti — g{t[, . . . ,tp) that cannot be abstracted, we try to 
abstract i'l, • . • ,tp, and so on. In the worst case, we are driven to abstract leaves of 
the term, which are either variables, that do not need to be abstracted if they are 
abstraction variables, or constants. 

On the contrary, we can choose in priority the smallest possible subterms Uj, 
that are constants or variables. The ordering constraints t > Ui needed to apply 
the induction hypothesis, and then to abstract the term, are easier to satisfy than 
in the previous case since the are smaller. 

Between these two cases, there are a finite but possibly big number of ways 
to choose the positions where terms are abstracted. Anyway it is not useful to 
abstract the subterms, whose ground instances arc in normal form. Identifying 
these subterms is made in the same way that for the study of TERMIN [S , u) (see 
Section 4.5). 

Prom the point of view of the narrowing step following the abstraction, there 
is no general optimal abstracting strategy either: the greater the term to be nar- 
rowed, the greater is the possible number of narrowing positions. On another side, 
more general the term to be narrowed, greater is the possible number of narrowing 
substitutions for a given redex. 

5.3 How to combine the proof steps 

The previous proof steps, applied to every reference term tref = 9{xi, ...,Xm), 
where xi,. . . , Xm € X and g € Vef, can be combined in the same way whatever 
S e {Innermost, Outermost, Local— Strat}: 

Strut— Rules (S) = repeat* {try {abstract), try{narrow), try{stop)). 

" repeat* (Ti , . . . , Tn)" repeats the strategics of the set {Ti , . . . , T„} until it is not 
possible anymore. The operator "try" is a generic operator that can be instantiated, 
following S, by try—skip{T), expressing that the strategy or rule T is tried, and 
skipped when it cannot be applied, or by try—stop{T), stopping the strategy if T 
cannot be applied. 

5.4 The termination theorem 

For each strategy S € {Innermost, Outermost, Local— Strat}, we write SUCCESS{g, 
y) if the application of Strat— Rules {S) on {{g{xi, . . . , Xm)},~^,~^) gives a finite 
proof tree, whose sets C of ordering constraints are satisfied by a same ordering 
y, and whose leaves are either states of the form (0,yl, C) or states whose set of 
constraints A is unsatisfiable. 
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Theorem 5.4.1. Let R be a rewrite system on a set T of symbols containing 
at least a constructor constant. If there exists an J^-stable ordering >- having the 

subterm property, such that for each symbol g £ "Def, we have SUCCESS{g,y), 
then every term ofT{!F) terminates with respect to the strategy S. 

We are now ready to instantiate this generic proof process, according to the 
different rewriting strategies. 

6. THE INNERMOST CASE 

6.1 Abstraction and narrowing 

When rewriting a ground instance of the current term according to the inner- 
most principle, the ground instances of variables in the current term have to bo 
normalized before a redex appears higher in the term. So the variable renaming 
performed before narrowing corresponds here to abstracting variables in the current 
term. Then, here, narrowing has only to be performed on terms of T{J-^ Xa)- 

Moreover for the most general unifiers a produced during the proof process, 
all variables of Ran{a) are abstraction variables. Indeed, by Definition 4.2.1, if 
X G Dom{a), aX is in normal form, as well as 9X for any instantiation 9. By 
definition of the innermost strategy, this requires that variables of aX can only be 
instantiated by terms in normal form, i.e. variables of aX are abstraction variables. 

Then, since before the first narrowing step, all variables are renamed into vari- 
ables of Xa ! and the narrowing steps only introduce variables of Xa , it is superfluous 
to rename the variables of the current term after the first narrowing step. 

6.2 Relaxing the induction hypothesis 

To establish TERMIN {Innermost, u), a simple narrowing test of u can first be 
tried. Except for the initial state, the variables of u are in Xa- So if u is not 
narrowable, or if u is narrowable with a substitution a that is not compatible with 
A, then every ground instance of u is in innermost normal form. Else, we compute 
the usable rules. 

When i is a variable of X, the usable rules of t are TZ itself. When t € Xa, the 
set of usable rules of t is empty, since the only possible instances of such a variable 
are ground terms in normal form. 

Definition 6.2.1 USABLE RULES. Let 7^ be a rewrite system on a set of sym- 
bols. Let Rls{f) = {l-^r Gn \ root{l) = /}. For any t&T{J^,Xyj Xa), the set 
of usable rules of t, denoted U{t), is defined by: 

—u{t) = niit&x, 

—U{t)=%iit&XA, 

-Uifiuu = Rlsif) U Ur=i WK) U Ui^^^Risif) WW- 

Lemma 6.2.1. LetTZ be a rewrite system on a setJ^ of symbols andt e T{T,X\J 
Xa)- Whatever at ground instance of t and at — ^pj^jj^j.^ ti -^p^^i2^r2 ^2 ^ 
. . . — >p^j^^r„ tn rewrite chain starting from at, then li —>■ ri G U{t), Vi S [l..n]. 

A sufficient criterion for ensuring standard termination (and then innermost ter- 
mination) of any ground instance of a term t can be given. 
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Table I. Inference rules for the innermost strategy 



A Ka+T-nr-t- {t}, A, C 

M, AM\i,i = Xi,...MU^i = X,^, CAHc{tU,)...AHc{tUJ 

where t is abstracted into u at positions ii, . . . ,ip ^ e 
if COND-ABSTRACT 

Narrow: r a^J — ^-7^ 
{u}, A A a, C 

if t -^g*"-'" u and COND-NARROW 

^. {t}. A, C 

0, AAHaH), CAHc{t) 

if COND-STOP 

T if any ground instance of t 

and HA{t) = { is in normal form 

ti = X otherwise. 

T if TERMIN {Innermost, t) 

tref > t otherwise. 



Hcit) 



Proposition 6.2.1. Let TZ be a rewrite system on a set T of symbols, and t a 
term of T{T, X U A/") . // there exists a simplification ordering >- such that VZ — > 
r G U{t) : I y r, then any ground instance of t is terminating. 

6.3 The innermost termination proof procedure 

The inference rules Abstract, Narrow and Stop instantiate respectively the proof 
steps abstract, narrow, and stop defined in Section 5.1. They arc given in Table I. 
Their application conditions depend on whether satisfiability of A or unsatisfiability 
of A is checked. These conditions are specified in Tables II and III respectively. 

As said above, the ground terms whose termination is studied are defined by the 
solutions of A. When satisfiability of A is checked at each inference step, the nodes 
of the proof tree exactly model the ground terms generated during the rewriting 
derivations. Satisfiability of A, although undecidable in general, can be proved by 
exhibiting a ground substitution satisfying the constraints of A. 

When satisfiability of A is not checked, nodes are generated in the proof tree, 
that can represent empty sets of ground terms, so the generated proof trees can 
have branches that do not represent any derivation on the ground terms. The un- 
satisfiability test of A is only used to stop the development of meaningless branches 
as soon as possible, with the sufficient conditions presented in Section 4.4. 

Once instantiated, the generic strategy Str at— Rules [S) simply becomes: 

repeat * {try—skip{A}ostvact); try—stop(^srvaw); try—skip{Stop)) 
with conditions of Table II, and 



repeat * {try—skip{Ahstrsict); try—skipCNarrow); try— skip {Stop)) 
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Tabic II. Conditions for inference rules dealing with satisfiability of A 
GOND-ABSTRACT : {A A tU,i ^ X,, . . . A = X^J 
and (C A Hc{t\iJ ... A Hc{t\t^)) are satisfiable 

COND-NARROW : A A ct is satisfiable 

COND-STOP : {A A HA{t)) and (C A Hc{t)) are satisfiable 



Table III. Conditions for inference rules dealing with unsatisfiability of A 
COND-ABSTRACT : C A Hc{t\iJ ... A HcHUj is satisfiable 

COND-NARROW: true 

COND-STOP : (C A Hc{t)) is satisfiable or A is unsatisfiable. 

with conditions of Table III. Note that Narrow with conditions of Table II is the 
only rule stopping the proof procedure when it cannot be applied: in this case, 
when A A (7 is satisfiable, the narrowing step can be applied, while, if satisfiability 
of A A (7 cannot be proved, the procedure must stop. 

The procedure can diverge, with infinite alternate applications of Abstract and 
Narrow. With conditions of Table II, it can stop on Narrow with at least in a 
branch of the proof tree, a state of the form {{t} ^ 0, A, C). In both cases, nothing 
can be said on termination. Termination is proved when, for all proof trees, the 
procedure stops with an application of Stop on each branch, generating only final 
states of the form (0, A, C). 

According to the strategy Strat— Rules {Innermost), testing satisfiability of A in 
conditions of Table II can be optimized on the basis of the following remarks. In 
the first application of Abstract for each initial state, (A A < J, = Xj^ . . .At\i^[ = 
-^ip) = (T A xil = Xx. . . A Xmi = Xm), which is always satisfiable, since the 
signature admits at least a constructor constant. Moreover, the following possible 
current application of Abstract comes after an application of Narrow, for which 
it has been checked that A A tr is satisfiable. So {A Aa At\i^l = Xi^ . . . At\i^i = 
Xi^) is also satisfiable since Xj^, . . . ,Xi^ are fresh variables, not used in A A a. 
So it is useless to verify satisfiability of {A A t\i^i — Xi^ . . . A t\i^i = Xi^) in 
COND-ABSTRACT. 

In a similar way, as Stop is applied with a current abstraction constraint formula 
A, which is satisfiable, A At\. = X \s also satisfiable since X is a fresh variable, 
not used in A. So it is also useless to verify that A A t[ = X ]s satisfiable in 
COND-STOP. 

This leads to the conditions expressed in Table IV, simplifying those of Table II. 
6.4 Examples 

For a better readability, when a constrained substitution a is added to the ACF A, 
we propagate the new constraint a into A in applying the substitution part ctq of 
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Tabic IV. Conditions for inference rules dealing with satisfiability of A 



COND-ABSTRACT : {C A Hc{t\i,) . . . A Hcit\i^)) is satisfiable 
COND-NARROW : AAais satisfiable 
COND-STOP ■ (C A Hc{t)) is satisfiable 



cr to A. 

Example 6.4.1. Let R be the previous example of Toyama. Wo prove that R is 
innermost terminating on T{T), where IF — {/ : 3, 5 : 2, : 0, 1 : 0}. 

/(O, l,x) f{x,x,x) 
g{x,y) X 
g{x,y) y 

The defined symbols of are here / and g. Applying the rules on f{xi,X2,xs), 
we get: 

tref = f {^1,3:2, Xs) 

A = T 
C = T 

Abs|ract 

f{Xi,X2,X3) 
A = (xil = XiA X2I = X2A X3I = X3} 
C = {f{xi,X2,X3) > X1,X2,X3) 



CT=(Xi=0AX2=l) 



Narrow 



f{X3,X3,X3) 
A = {xil = XiA X2I = X2A X3l = X3) 
C = {f{xi,X2,X3) > Xl,X2,X3) 

Stop 



A= {xil = Xi A X2I = X2 A X3l = X3) 
C = {f{xi,X2,X3) > X1,X2,X3) 

Abstract applies since f{xi,X2,X3) > xi,X2,X3 is satisfiable by any simplifica- 
tion ordering. 

If we arc using the conditions for inference rules dealing with satisfiability of 
A given in Table IV, we have to justify the Narrow application. Here, Narrow 
applies because AAa = {xii = 0Aa;2i = 1 Aa;3j, = X3), where a = {Xi = OAX2 = 
1), is satisfiable by any ground instantiation 6 such that 6x1 = 0, 6x2 = 1 and 
0X3 = 9X3 = 0. 

Then Stop applies because /(X3, X3, X3) is a non narrowable term whose all vari- 
ables are abstraction variables, and hence we have TERMIN {Innermost, f{Xs, Xs, 
Xs)). 

Considering now g{x\^X2)^ we get: 
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tref = 9{xi,X2) 

A = T 
C = T 

Abs|ract 

9(^1,^2) 

A = (xa = xiAx2i = x2) 

C = (g{xi,X2) > XI, X2) 



Narrow^ 



A = {xil = XiAx2i = X2) 
C = (g{xi,X2) > XI, X2) 

Stop 

i 



A = {xil = XiAX2l=X2) 

C = {g{xi,X2) > XI, X2) 




>4arrow 

X2 

A = {xil = Xj_Ax2l = X2) 
C = (g(xi,X2) > XI, X2) 

St'op 



A={xil=XiAX2l=X2) 

C = {g{xi,X2) > XI, X2) 



Abstract applies since 5(2:1, 0:2) > x-i,X2 is satisfiable by any simplification 
ordering. 

Again, we have to justify the Narrow application. Here, Narrow applies be- 
cause A Aa = {xii = Xi A X2J, = X2), where a = Id, is satisfiable by any ground 
instantiation 9 such that 9xi = 9Xi = and 9x2 = 9X2 = 0. 

Then Stop applies on both branches because Xi and X2 are abstraction vari- 
ables, hence we trivially have TERMIN {Innermost, Xj) and TERMIN {Innermost, 
X2). 

Exam,ple 6.4.2. Let us now give an example illustrating how the usable rules 
can be helpful and why detecting unsatisfiability of A can be important. Let us 
consider the following system TZ: 



plus{x,0) 

plus{x,s{y)) 
f{0,s{0),x) 

9{x,y) 
9{x,y) 



(1) 

s{plus{x,y)) (2) 
f{x,plus{x,x),x) (3) 
X (4) 

y (5) 



Let us first remark that TZ is not terminating, as illustrated by the following cycle, 
where successive redexes are underlined: 

/(0,s(0),g(0,s(0))) ^(3) /( g(0, s{0)) ,plus{g{0, s{0)), g(0, s(0))), g(0, s{0))) 

/(O, plus{ g{0,s{0)) , g(0, s(0))), g(0, s(0))) 
^(■') /(O, plus{s{0), g{0,s(0)) ),g{0, s(0))) 

f{0, plus(s(0),0) ,g{0,siO))) 
->W /(0,s(0),g(0,s(0))) 
^(''*) 

Let us prove the innermost termination of TZ on T{J-), where = {0 : 0, s : 
l,plus:2,g:2,f:3}. The defined symbols of are f,plus and g. 
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Let us apply the inference rules checking unsatisfiability of A, whose conditions 
are given in Table III. Applying the rules on /(a;i,a;2,a;3), we get: 



f{xi,X2,X3) 

A = T 
C = T 

Abs|ract 

/(Xi,X2,X3) 
(xil = XiA X2I = X2A x-sl = X3) 

C = f{xi,X2,X3) > Xl,X2,X3 



<T = {Xi=()AX2 = s(0)) 



Narrow 



f(X3,plusiX3,X3),X3) 

A = {xil = A a;2i = s(0) A X3I = X3) 

C = f{xi,X2,X3) > Xl,X2,X3 

Abs|ract 

/(X3,X4,X3) 

A = (a;a = A a;2i = s(0) A aJai = X3 A plus{X3, X3)i = X4) 

C = f{xi,X2,X3) > X1,X2,X3 



CT=(X3=0AX4=s(0)) 



Narrow 



/(0,p««s(0,0),0) 
A = (11 J, = A a;2 J. = s(0) A isi = A plusiO, 0)1 = s(0)) 

C = f{xi,X2,X3) > Xl,X2,X3 



stop 



^ = (xii = A a;2i = s(0) A xsj. = A plus{0, 0)1 = s(0)) 

C = f{xi,X2,X3) > Xl,X2,X3 



The first Abstract applies since f{xi,X2,X3) > xi,X2,X3 is satisfiable by any 
simplification ordering. 

Since we are using the inference rules checking unsatisfiability of A given in 
Table III, we do not have to justify the Narrow applications. 

The second Abstract applies by using the TERMIN predicate. Indeed, the us- 
able rules of plus{X:>,, X:i,) consist of the system {plus{x,Q) x,plus{x, s(y)) — » 
s{plus{x,y))}, that can be proved terminating with any precedence based order- 
ing, independent of the induction ordering, with the precedence plus s, which 
ensures the property TERMIN (Innermost, plus{Xs, Xs)). Without abstraction 
here, the process would have generated a branch containing an infinite number 
of Narrow applications. 

Finally, Stop applies because the constraint A becomes unsatisfiablc. Indeed, 
it contains the abstraction constraint plus{0, 0)1 = s(0), which is not true since 
the unique normal form of plus{0, 0) is 0. Note that if we would have chosen to 
apply the inference rules checking satisfiability of A, whose conditions arc given in 
Table IV, then the last narrowing step would not have applied, and would have 
been replaced by a Stop application. 
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Considering now g{xi,X2), we get: 



tref = g{xi,X2) 

A = T 
C = T 

Absi ract 

giXi,X2) 

A = (a:a = Xi Aa;2i = X2) 
C = {g{xi,X2) > XI, X2) 

Narrow. 



A = {xli = Xl^X2i=X2) 

C = {g{xi,X2) > XI, X2) 




X2 

A = {xil = XlAX2l = X2) 

C = {g{xi,X2) > XI, X2) 



stop 

i 



stop 

I 



A = (xil = XiAx2l = X2) 
C = {g{xi,x2) > xi,x2) 



A=ixil = XiAX2l = X2) 
C = {g{xi,X2) > xi,X2) 



Abstract applies since g{xi,X2) > xi,X2 is satisfiable by the previous precedence 
based ordering. Stop applies on both branches because Xi and X2 are abstraction 
variables, so we trivially have TERMIN {Innermost, Xi ) and TERMIN {Innermost, 

X2). 

Let us finally apply the inference rules of Table III on plus{xi, X2)'- 



plus{xi,X2) 
A = T 
C = T 



Absiract 

plus(Xi,X2) 
A={xjl = XiAx2l = X2) 

C = plus(x\,X2) > Xl,X2 



Narrow> 



= (X2 = 0) 



= (X2 = s(X3)) 




Xi 

A = (xil = Xi AX2I = 0) 

C = plus{xi, X2) > XI, X2 

stop 

i 



A = [xil = Xi AX2I = 0) 

C = plus{xi,X2) > X\,X2 



s(plus{Xi,X3)) 
A=(xii = XiAx2i = s{Xz)) 

C = plus(x\, X2) > XI, X2 

stop 



A={xil=XiAX2l = s{X3)) 
C = plus{xi,X2) > Xl,X2 



Abstract applies since g{xi,X2) > x\,X2 is satisfiable by the previous prece- 
dence based ordering. Stop applies on the left branch because Xi is an ab- 
straction variable, hence we trivially have TERMIN {Innermost, Xi). Stop ap- 
plies on the right branch by using the TERMIN predicate. Indeed, the usable 
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rules of s{plus{Xi,X3)) consist of the previous terminating system {plus (x,0) 
x,plus{x,s{y)) s{plus{x,y))}. 

7. THE OUTERMOST CASE 

7.1 Abstraction 

According to the outermost strategy, abstraction can be performed on subterms 
ti only if during their normalization, the ti do not introduce outermost redexes 
higher in the term t. More formally, the induction hypothesis is applied to the 
subterms t\p^, . . . ,t\p^ of the current term i, provided atref >- a^lpi, • ■ • , a^|p„ for 
every ground substitution a, for the induction ordering >- and provided u = 
• • • [2/n]p„ is not narrowablc at prefix positions of pi, . . . ,]3„, for the outermost nar- 
rowing relation defined below. 

As already mentioned in Section 4.5, if in addition, the variables of u are all in 
Xa, and u is not narrowable, then every ground instance of the term u outermost 
terminates. 

7.2 The narrowing mechanism 

Outermost narrowing is defined by Definition 4.3.2, where a S'-better position is 
a prefix position. In order to support intuition, let us consider for instance the 
system {f{g{a)) a,f{f{x)) — * b,g{x) f{g{x))}. With the standard narrowing 
relation used at the outermost position, f{g{xi)) only narrows into a with the first 
rule and the substitution a = (xi = a). With the outermost narrowing relation, 
f{g{xi)) narrows into a with the first rule and a = {xi = a), and into f{f{g{x2))) 
with the third rule and the constrained substitution a = {xi = X2 A X2 a). 

The variables of the narrowed terms are in U Xa- as we will see, renaming 
variables of X still gives variables of X, and abstraction, replacing subterms by 
variables of Xa, may not cover all variables of X in the abstracted term. 

In the outermost termination proof, the variable renaming performed before the 
narrowing step has a crucial meaning for the schematization of outermost deriva- 
tions. This renaming, applied on the current term g{xi, . . . ,x,n), replaces the 
variable occurrences Xi, . . . ,Xjn by new and all different variables x'l, . . . , x'^, de- 
fined as follows. Given any ground instance ag{xi, . . . , Xm) of g{xi, . . . , x„i), the 
x'l, ... , represent the first reduced form of axi , . . ■ , aXm generating an outer- 
most reduction higher in the term (here, at the top), in any outermost rewriting 
chain starting from ag{xi, . . . ,Xm)- This replacement is memorized in a reduction 
formula before applying a step of outermost narrowing to g{x[, ... ,x'^). The ab- 
straction variables are not renamed: since their ground instances are in normal 
form, they are not concerned by the rewriting chain schematized by the variable 
renaming. 

Formally, the definition of the variable replacement performed before a narrowing 
step is the following. 

Definition 7.2.1. Let t G T{T,X) be a term whose variable occurrences from 
left to right in t The reduction renaming of t, noted p = (xi 

x[)...{xm x'^), consists in replacing the Xj by new and all different variables x'^ 
in t, giving a term t^. This is denoted by the so-called reduction formula 

R{t) = t ^* tP. 
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Notice that the reduction renaming hnearizes the term. For instance, the two 
occurrences of x in g{x, x) are respectively renamed into x[ and x'2, and g{x, x) -»* 

Definition 7.2.2. Let t € T{J^, X) be a term whose variable occurrences from left 
to right are 0:1, . . . , x^, at positions pi, . . . ,pm respectively. A ground substitution 
satisfies the reduction formula R{t) = t -»* f, where p = (xi x'i)...{xm 
x'), iff there exists an outermost rewriting chain Ot ^*°^, > Of — *-'"'^=r, , w, i.e. 
such that: 

— either t[9x[]p-^ . . . [Ox'^^jp^ is the first reduced form of 0t — t[0xi]p-^ . . . [Oxm]pr„ 
on this chain having an outermost rewriting position at a non variable position 

of t, if this position exists, 
— or 6x[ = {6x1 1), . . . , Ox'^^ — (Oxml) if there is no such position. 

Before going on, a few remarks on this definition can be made. In the sec- 
ond case of satisfiability, t[6'xi|]i . . . [temilm is in normal form. In any case, R{t) 
is always satisfiable : it is sufficient to take a ground substitution 9 such that 
t[6'xi]p^ . . . [0Xm]prn has an outermost rewriting position at a non variable position 
of t, and then to extend its domain {xi, . . . , Xm} to {xi, . . . , Xm, a^i, • ■ • , x'^} by 
choosing for each i £ {l,...,m}, Ox'^ = 0Xi. If such a substitution does not ex- 
ist, then every ground instance of t has no outermost rewriting position at a non 
variable position of t, and it is sufficient to take a ground substitution 9 such that 
6x1 = ... = 6xm = Ox'i = . . . = 9x'^ = u, with u any ground term in normal form. 

However, there may exist several instantiations solution of such constraints. Let 
us consider for instance the rewrite system R = {/(a) f{c),b a} and the 
reduction formula R{f{x)) = f{x) -»* f{x'). The substitution 9\{x) = 9i{x') — a 
and 6*2(0;) — b, 6*2(2;') ~ a are two distinct solutions. With the substitution 92, f{a) 
is the first reduced form of f{b) having an outermost rewriting position at a non 
variable position of f{x) (here at top). 

Notice also that if t is outermost reducible at position p, variables of t whose 
position is a suffix of p are not affected by the reduction renaming. 

Indeed, if t is reducible at position p, a ground instance at of t cannot be outer- 
most reduced in the instance of x, whose positions are suffix of p. So x', representing 
the first reduced form of ax in any outermost rewriting chain starting from at, such 
that the reduction is performed higher in the current term, is equal to x. 

To illustrate this, let us consider the system {g{x) x, f{x, x) x} (the right- 
hand sides of the rules arc not important here). Then, since f{x,g{y)) outermost 
rewrites at the position of g, the variable y does not need to be renamed. So 
R{f{x,g{y))) = {f{x,g{y)) /(a;', .g(y))). 

Because of the previously defined renaming process, the formula A for cumulating 
constraints has to be completed in the following way. 

Definition 7.2.3. A renaming-abstraction constraint formula (RACF for short) 
is a formula 

Am"™ ^* WmA»(*ii =t'i)^l\j{Xj =tj)f\l\k'^iSui^ 7^W;J,whcrCU„,U^,ii,t^,ij, 

'^ik^'^ik G ^(-^7 U '^a), Xj € X U Xa- The empty formula is denoted T. 

Definition 7.2.4. A renaming-abstraction constraint formula 
Nm'^m^* Ai(*ii = t'il^Nji^j = i3)^Nk Vu iui^ ^h) is Said to be satisfiable 
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iff tfiere exists at least one instantiation 9 such tliat Ai(^^i-t = ^^i) ^ Aj(^^j =^ 
&tj) A Afe Vi^i^ui^ ¥= 6vi,) and 6 satisfies A™ ^* uP,. 

In practice, one can solve the equality and disequality part of the constraint and 

then check whether the solution satisfies the reduction formulas. This is trivial 
when only instantiates the x'^, since it can be extended by setting 0{xi) = 0{x^). 
Unfortunately, when 6 also instantiates the Xj, we get the undecidable problem 
of reachability: given two ground terms t and t' , can t be transformed into t' by 
repeated application of a given set of rewriting rules? 

So here again, we can either test satisfiability of the formula of cumulated con- 
straints, or unsatisfiability. As satisfiability is in general more difficult to show than 
in the innermost case, wc only present here inference rules checking unsatisfiability. 

7.3 Inference rules for the outermost case 

The inference rules Abstract, Narrow and Stop instantiate respectively the proof 
steps abstract, narrow, and stop. 
They work as follows: 

— The narrowing stop is expressed by a rule Narrow applying on {{t}, A, C): the 
variables of t are renamed as specified in Definition 7.2.1. Then f is outer- 
most narrowed in all possible ways in one step, with all possible rewrite rules of 
the rewrite system TZ, into terms u. For any possible u, wc generate the state 
{{u}, R{t) AAAa,C) where a is the constrained substitution allowing outermost 
narrowing of t^ into u. 

— The rule Abstract works as in the innermost case, except that the abstraction 
positions are such that the abstracted term is not narrowable at prefix positions 
of the abstraction positions. 

— The rule Stop also works as in the innermost case. 

To prove outermost termination of TZ on every term t € T{T), for each defined 
symbol g G Pe/, we apply the rules on the initial state {{tref = g{xi, . . . , Xm)}, T, T), 
with the strategy: 

Strat— Rules (Outermost) = repeat * {try—skip{Ahstract); try—skip{Narrow); 

try— skip (Stop)). 

There are three cases for the behavior of the strategy: either there is a branch in 
the proof tree with infinite applications of Abstract and Narrow, in which case 
we cannot say anything about termination, or the procedure stops on each branch 
with the rule Stop. Then, outermost termination is established, if all proof trees 
are finite. 

According to the remark following Definition 7.2.2, the reduction formulas in A 
may often be reduced to simple variable renamings. In this case, A only contains 
variable renamings and constrained substitutions, that can be used to show that the 
ordering constraint needed to apply Abstract or Stop is satisfiable (see Examples 
B.l and B.4 in [Fissore et al. 2002c]). The following lemma can also be used, if 
satisfiability of C is considered with Definition 4.4.3 (see Examples B.2, B.3 and 
B.4 in [Fissore et al. 2002c]). 
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Table V. Inference rules for the outermost strategy 



A Ka+T-nr-t- {t}, A, C 

M, AM\i,i = Xi,...MU^i = X,^, CAHc{tU,)...AHc{tUJ 

where t is abstracted into u at positions ii, . . . ,ip ^ e 

if C A -H'c(ik) • ■ • A Hc{\ti^) is satisfiable 

and u is not narrowable at prefix positions of ii,. . . ,ip 



Narrow: 



{I}, A C 
{u}, R{t)AAAa, C 



if ' U 

c+ {t}, A, C 

* 0, AAHA{t), CAHc{t) 

if C A Hc{t) is satisfiable or A is unsatisfiable 

{T if any ground instance of t 

is in normal form 
tl = X otherwise. 

, , _ f T if TERMIN {Outermost, t) 

I ^ref > t otherwise. 



Lemma 7.3.1. Let {{ti},Ai,Ci) he the i*^ state of any branch of the derivation 
tree obtained by applying the strategy S on {{tref}, T, T), and >- an !F-stahle order- 
ing having the subterm property. If every reduction formula in Ai can be reduced 
to a formula /\- Xj — Xj , then we have: 



for all variable x of ti in X: [tref > x)/Ai is satisfiable by y. 



7.4 Examples 

Example 7AA. Consider the previous example TZ — {f{g{a)) — > a,f{f{x)) —>■ 
h,g{x) —>■ f{g{x))}, that is outermost terminating, but not terminating for the 
standard rewriting relation. We prove that TZ is outermost terminating on T{J^) 
where T = {f : 1, g : 1, a : 0,b : 0}. 

The defined symbols of JF for TZ are / and g. Applying the rules on f{xi), we 
get: 
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/(^i) 



T 



Narrow^ 

'a=(x{=g(a)) 



^Narrow 



A x[ = g{a)) 

Stop 



(/(^i) /W) 
A x[ = g(a)) 
C = T 



Ax[=f{x2)) 

stop 



A = {f{xi)^* /(x'l) 
Ax'i =/(a:2)) 

C = T 



The first Stop is applied because a is in normal form, the second Stop because 
b is in normal form. Applying the rules on g{xi), we get: 



:T,C: 



Narrow 



A = T,C = T 




sj^arrow 

=(xiySa) 



A = (xi = a) 

stop 
I 



A = {xi = a) 
C = T 



A= (xi =i a) 
C- 



Narrow 



A = (xi ^ o) 
stop 

i 



A=(xijt a) 
C = T 



There is no reduction renaming before the Narrow steps, since g{x\), f{g{x\)) 
and f{f{g{xi))) arc reducible at prefix positions of the position of xi. 

When narrowing f{g{xi)), we first try the top position, and find a possible uni- 
fication with the first rule (the left branch). One also must consider the third rule 
if xi is such that xi ^ a (second branch). Stop is applied on a and b as previously. 

Example 7.4.2. Let TZ be the rewrite system cited in the introduction, built on 

= {cons : 2, inf : 1, big : 0} : 

cons{x,cons{y, z)) big 

inf{x) cons {x, inf {s{x))) 
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Applying the inference rules on inf{xi), we get 



inf{xi) 
A = T, C = T 



Narrow 



cons{xi,inf{s{xi))) 
A = T, C = T 



<T—Id Narrow 



cons{x'^, cons{s(xi) , inf{s{s{x\))))) 
A = {cons{xi,inf{s{xi))) cons{xi,inf{s{xi)))) 
C = T 



Narrow 



A = {cons{xi,inf{s{xi))) -»* cons{x'i,inf{s{xi)))) 
C = T 



Stop 



A = (cons{xi,inf{s{xi))} -»* cons{xi,inf{s{xi)))) 
C = T 



Applying the inference rules on cons{xi,X2), we get : 

cons{xi,X2) 
A = T, C = T 



(j={x'2=con3(x3,xi)) Narrow 
big 

A = {cons{xi,X2) ^* cons(x'^,X2)) 
A x'2 = cons{x3, X4)) 

stop 



A= (cons(xi,X2) -»* cons(x'j^, x'2)) 
A x'2 = cons{x3,X4)) 
C = T 



Other examples can be found in [Fissore et al. 2002c]. 



8. LOCAL STRATEGIES ON OPERATORS 

We now address the termination problem for rewriting with local strategies on 
operators. 
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8.1 Abstraction and narrowing 

The information that variables are abstraction variables can be very important to 
conclude the proofs here: if the current term is an abstraction variable, its strategy 
is set to [] in the Narrow step, and then the Stop step applies. This information 
can be easily deduced when new variables are introduced: the abstracting process 
directly introduces abstraction variables, by definition. But the resulting term may 
still have variables of X since the abstracted subterms of a term may not cover all 
variables of the term. 

Moreover, narrowing is performed on terms of T{J^,X U Xa)- Indeed, there is 
no variable renaming before the narrowing steps, that could transform all variables 
into abstraction variables. In addition, even if the variables of a narrowed term are 
all in Xa, the range of the narrowing substitution can introduce variables of X, 
according to the LS-strategies, if these variables do not appear at LS-positions. 

However some variable occurrences can be particularized into variables of Xa in 
the narrowing process: the narrowing substitution a, whose range only contains 
new variables of X, can be transformed into a new substitution a a by replacing 
some of these variables by abstraction variables. Let us consider an equality of 
the form X = u, introduced by the narrowing substitution a, where X G Xa, and 
u e T{J^,X). As X is an abstraction variable, every ground instance of u must 
be in normal form. So the variables in u that occur at an LS-position can be re- 
placed by abstraction variables. Let now /U be the substitution (xj = Xi), for all 
Xi e Var{u) such that X = u is an equality of a with X G Xa, u £ T{J^, X U Xa), 
and Xi occurs at an LS-position in u. Then aA = A*cr. 

Combining abstraction and narrowing is achieved here in the following way. The 
abstraction positions are chosen so that the abstraction mechanism captures the 
greatest possible number of rewriting steps: we try to abstract the immediate 
subterms of the current term. If the abstraction is possible, then a narrowing step 
is applied, only at the top position, which limits the number of narrowing steps, 
more complicated here than for the other strategies, since, as we will see later, they 
involve complementary branches. 

If Abstract cannot be applied at all LS-positions of the term, the process is 
stopped, and nothing can be concluded about termination. 

8.2 The ternnination proof procedure for local strategies 

The inference rules Abstract, Narrow and Stop instantiate respectively the proof 

steps abstract, narrow, and stop. They work in the following way on a state 
({i[pi,...,P„]},A,C), where top{t) = f and LS{f) = 

— The rule Abstract processes the abstracting step. It can apply: 

— when there exists k G [2..n], pj 7^ for 1 < j < fc — 1 and pk = 0. The term 
t is abstracted at positions pj ^ for 1 < j < A: if there exists an ^-stable 
ordering having the subterm property and such that CA{tref > t\pj,l < j < k) 
is satisfiable. Indeed, by induction hypothesis, all ground instances of t\p., 1 < 
j < k LS-terminate. We can instead have TERMIN {Local— Strat,t\p-) for 
some of the previous t\p^ . The list of positions then becomes [0,pk+i, ■ ■ ■ ,Pn\- 
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— when there is no position in the strategy of the current term. Any ground 
instance of the term obtained after abstraction is irreducible, by definition of 
the LS-stratcgy, which ends the proof on the current derivation chain. The set 
containing the current term is then replaced by the empty set. 

— when pi = 0. The rule applies but does not change the state on which the 
narrow step can be applied. 

— The rule Narrow works as follows: 

— if the current term t is narrowable at position 0, t is narrowed in all pos- 
sible ways in one step, with all possible rewrite rules of the rewrite system 
R, and all possible substitutions Ci, into Ui,i G [1..^]. Then from the state 
{{t^°'P''--P-^,A,C) we generate the states ({wf ^^*°^^"'^'}, AAai, C), i € 
where the crj are all most general unifiers allowing narrowing of t into terms 
Ui, such that A A ai is satisfiablc. This narrowing step means that ait, . . . , ait 
are all most general instances of t that are reducible at the top position. As 
a consequence, if $ = WT A ... A ai is satisfiable, for each instantiation /it 
satisfying $, fit is not reducible at the top position. Then, as these fit have to 
be reduced at positions [pi, . . . ,Pn], we also generate the complementary state 

({tbl,...,Pn]}^^AAU^>C7). 

Let us also notice that if Ui is a variable x E X, wo cannot conclude anything 
about termination of ground instances of x. Setting LS{x) to [0] or P would 
wrongly lead to conclude, with the rule Narrow, that ground instances of x 
are terminating. So we force the proof process to stop in setting LS{x) to a 
particular symbol fl. However, if Ui = X € Xa, LS{X) is set to [], which is 
coherent with the fact that any ground instance of X is in LS- normal form. 
— if t is not narrowable at position or is narrowable with a substitution that is 
not compatible with the current constraint formula A, then no narrowing 
is applied and the current term is evaluated at positions following the top 
position in the strategy. The list of positions then becomes [pi, . . . ,Pn]- 

— We also can check for the current term whether there exists an ordering having 
the subterm property such that C A tref > t is satisfiable. Then, by induction 
hypothesis, any ground instance of t terminates for the LS-strategy, which ends 
the proof on the current derivation chain. The Stop rule then replaces the set 
containing the current term by the empty set. 

The rule Stop also allows to stop the inference process when the list of positions 
is empty. 

The set of inference rules is given in Table VI. In the conditions of these rules, 
satisfiability of A is checked. Working with unsatisfiability of A would be more 
technical to handle here than in the innermost case, because of the complementary 
branches generated by the Narrow rule. 

The strategy for applying these rules is: 

repeat * {try—stop{Abstract); try—stop{Narrow); try— skip (Stop)). 

There are here also three cases for the behavior of the proof process. It can di- 
verge as previously, or stop and the states in the leaves have then to be considered. 
The good case is when the process stops and all final states of all proof trees are of 
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Table VI. Inference rules for trej LS-termination 



Abstract: 



{^[pi.-.p.]}^ A, C 



{u'}, A A /\ it\ji = Xj), CA /\ Hc{t\j) 
je{n,...,ip} jefil, •••,»?} 



where t is abstracted into u at the positions ii,. . . ,ip G POS 

HA A /\ {t\ji = Xj),CA f\ i?c(i|j) are satisfiable and 

je{ii,...,ip} je{ii....,ip} 
POS = {pi,. . . ,pk-i},S = [0,pk+i,.-.,Pn] if 3/c e [2..n] : pi, . . . ,pk-i ^ 
and Pk = 

POS = {pi, . . . ,Pn}, 5 = [] if Pl, . . . ,Pn 7^ or [pi, . . . ,Pn] = [] 

POS = <l>,S=\pi,...,Pn] if Pi =0 

r^[o,pi,...,p„] j ^ 
Narrow: — z—q-. ^-7 — 

where u = Ui, S = LS{top{ui)), A! = A Aui \it ^j^' Ui and A A cr, is satisfiable 
or = ^Ipi' - 'P"]^ ^' = AA {f\a^), and crj, i € are all nar. subst. as above 

i=l 

or u'^ =&^-'P-\A' = A 

if t is not narrowable at the top position 

or Vct nar. subst. of t at the top position, AAa is not satisfiable 



0, AaHaH), C a He it) 
if AAHA{t), C A Hc{t) are satisfiable 



and HA{t) = < 



'T if = [] 

or any ground instance of t 
is in normal form 
tj, = X otherwise. 
T if [pi,...,p„] = [] 

ifc(t) = or TERMIN {Local- Stmt, t) 

tref > t otherwise. 



ACM Transactions on Computational Logic, Vol. X, No. X, Date XXXX. 



32 • Isabelle Gnaedig and Helene Kirchner 



the form {ii>,A,C). 



8.3 Examples 

Example 8.3.1. Let us recall the rules of the example given in the introduction. 



fii(x)) ite{zero{x),g{x), f{h{x))) 

^ero(O) true 

zero(s(x)) false 

ite(true, x,y) —fX 

ite{false, x,y) y 

h{0) -> i(0) 

h{x) — > s{i{x)) 



The LS-strategy is the following : 

—LS{ite) = [1;0], 

—LS{f) = LS(zero) = LS{h) = [1; 0] and 
—LS{g) = LS{{) = [l]. 

Let us prove the termination of this system on the signature !F = {/ : 1, zero : 
l,ite : 3,h : l,s: l,g : 1,0:0}. 

Applying the inference rules on f{xi), we get : 



A = T, C = T 



Absiract 

A = (xii = Xi) 
C = (/{xi)>xi) 




ite{zero{X2 ) , 9(^2 ), /(/i(X2 ))) l^'Ol /(Xi ) D 

A = {xii = i(X2)) A = (xii = Xi) A (Xi ^ i(X2)) 

C = (/(xi) >xi) C = {f{xi)>X'0 

Absiract Stop 

I r 

ite(X3,9(X2),/(/i(X2)))m 
A = {xii = i(X2) A 2ero(X2)i = X3) A = (xii = Xi) A (Xi ^ ^(Xa)) 

C = {f{x'i)>xi) C = {f{xi)>xi) 

Abstract applies on f{xi), since C is satisfiable by any ordering having the 
subterm property. A is satisfiable with any instantiation 9 such that 9xi = 9Xi = 0. 

Narrow expresses the fact that af{X\) is reducible if a is such that aXi = i{X2), 
and that the other instances (a' f(Xi) with (j'Xi ^ {{X^)) cannot be reduced. 

The renaming of xi into X2 in oa comes from the fact that xi occurs in iix-i) at 
an LS-position in cr = {X\ = i{x2))- 
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Then, the constraint formula A on the left branch is satisfiable by any instanti- 
ation 9 such that 6X2 = and 6x1 = i{0). The constraint formula on the comple- 
mentary branch is satisfied by any instantiation 6 such that 0xi = dXi = 6X2 = 0. 

Abstract applies here on the first branch, since zero{X2) can be abstracted, 
thanks to a version of Proposition 6.2.1 adapted to local strategies [Fissore et al. 
2001]. Indeed, U{zero{X2)) = {zero(G) true, zero{s{x)) false}, and both 
rules can be oriented by a LPO >- with the precedence zero true and zero >-j: 
false. Then we have TERMIN {Local- str at, zero{X2)). 

The next constraint formula A is satisfiable with any instantiation such that 
eX2 = 0, eXz = true and Oxi = «(0). 

Then, Narrow applies on the left branch: 



ite(X3,9(X2),/(/i(X2)))ra 
: {xii = i{X2) A zero{X2)l = X3) 
C = {f{xi)>xi) 



Narrow: 




-(X3=false) 



^mplementary state 



a(X2)iii 

A={xil = iiX2)A 
zero{X2)l = true) 
C = ifixi) > xi) 

Abs|ract 

g{X2)0 
A = {xil = i{X2)A 
zero{X2)l = true) 
C = (f(xi)>xi) 

Stop 



A= (xii = j(X2)A 
zero{X2)l = true) 
C = {f{xi)>xi) 



/{/l(X2))ll-«l 

A = {xil = t{X2)A 
zero{X2)l = false) 
C = {f{xi)>xi) 

Absiract 

/(X4)m 

A = {xil = i{X2)A 
zero{X2)l = false A ^(Xa)^ = X4) 
C = (f(xi)>xi) 

Narrow 
I 

/{^4)[1 
A = {xil = i{X2)A 
zero(X2)l = false A h{X2)l = X4) 
C = {f{xi)>xi) 

Stop 



A={xii = i(X2)A 
zero{X2)l = false A h{X2)[ = X4) 
C = (/(a;i)>xi) 

The first constraint formula A is satisfiable by any instantiation 9 siich that 
9X2 ~ and 9xi — i(0). The second one is satisfiable by any instantiation 9 such 
that 9X2 = s(0) and 9xi = z(s(0)). The third one (sec below) is satisfiable by any 
instantiation 9 such that 9X^ = zero(i(0)), 9X2 = i(0) and 9xi = i{i(0)). 

Abstract trivially applies on g{X2): since X2 is an abstraction variable, there 
is no need to abstract it. 

The second Abstract applies on f(h(X2)), thanks to the previous adaptation 
of Proposition 6.2.1 to local strategies. Indeed, U{h{X2)) = {/i(0) i{0),h{x) 
s{i{x))}, and both rules can be oriented by the same LPO as previously with the 
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additional precedence h ^jf i and h'^j: s. Then we have TERMIN {Local— strut, 

hiX2)). 

The constraint formula associated to /(X4)t''l is satisfiable by any instantiation 
9 such that 0Xi = s(z(s(0))), 0X2 = s(o') and Oxi = z(s(0)). 

One could have tried to narrow /(X4), by using the first rule and the narrowing 
substitution cta = {X4 = ^(Xs)). But then A A aA would lead to {xil = i{X2) A 
zero{X2)i = false t\h{X2)i = i{X^)). For any 9 satisfying AAaA, 9 must be such 
that 9h{X2)i = hieX2i)l = i{9X^). If ^Xsi ^ 0, then, according to 7^, h{9X2i) ^ 
s{i{9X2i)), where s is a constructor. Then we cannot have h{9X2i)i = i{9X^), so 
9 must be such that 9X2i = 0. But then 9zero{X2)i = true, which makes AAga 
unsatisfied. Therefore there is no narrowing. 

For the third branch, we have: 

• 

ite(X3,ff(X2),/(ft(X2)))D 

zero(X2)i = Xa 
AXs ^ true A X-s / false) 
C = {f{xi)>xi) 

Stop 

i 



A={xil = i(X2)A 
zero{X2)l = X3A 
X3 7^ true A Xs false) 
C = {f{xi)>xi) 

Like for the defined symbols ite, zero, h, the inference rules apply successfully 
through one Abstract, Narrow, Abstract with no abstraction position, Narrow 
and Stop application. Therefore IZ is LS-terminating. 

Let us now give an example that cannot be handled with the context-sensitive 
approach. 

Example 8.3.2. Let TZ be the following rewrite system 

f{a,g{x)) f{a,h{x)) 

with the LS-strategy : LS{f) = [0; l;2], LS{h) = [0] and LS{g) = [1]. 

The context-sensitive strategy would allow to permute the reducible arguments 
of /, so that wc also could evaluate terms with LS{f) = [1;2;0]. We let the user 
check that, with this strategy, TZ does not terminate. 

Applying the rules on f{xi,X2), we get: 
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/(X1,X2)1»'1'2] 

A = T, C = T 




/(a,?i(x3))[0-i-21 
A = (xi = a AX2 = 9(^3)) 
C = T 



/(xi,X2)[l-2] 

C = T 



Narrow 

I 

/(a,fc(x3))[i'2] 

A = {xi = a A X2 = g{x3)) 
C = T 



Absi ract 

/(a, ^3)11 
A = (xi = a A X2 = g{x3)A 
h{x3)l=X3) 
C={f{xi,X2) > h{x3)) 



Abstract 

/{^l,^2)[l 

A = (xil = Xi A X2I = X2 
XI ^ a A X2 ^ g{x3)) 

C = {f{xi,X2) > XI, X2) 
o I 

Stop 

I 



A = {xil = Xi A X2I = X2 
XI =i a A X2 9(3:3)) 

C = {f{xi,X2) > XI, X2) 



Stop 



A = {xi = a A X2 = g{x3)A 
h{x3)l = X3) 
C = {f{xi,X2)>h{x3)) 



Applying the rules on h{xi), we get: 



/i(i;i)[01 
A = T, C = T 



Narrow 

9(a;i)lil 
A = T, C = T 



Abstract 

g(Xi)ll 

A = {xil = Xi), C = {h{xi) > xi) 



Stop 



A={xil = Xi), C={h{xi)>xi) 
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9. CONCLUSION 

The generic termination proof method presented in this paper is based on the simple 
ideas of schematizing and observing the derivation trees of ground terms and of 
using an induction ordering to stop derivations as soon as termination is ensured 
by induction. The method makes clear the schematization power of narrowing, 
abstraction and constraints. Constraints are heavily used on one hand to gather 
conditions that the induction ordering must satisfy, on the other hand to represent 
the set of ground instances of generic terms. 

Our technique is implemented in a system named CARIBOO [Fissoro ct al. 2002a; 
Fissore 2003; Fissore et al. 2004a], providing a termination proof tool for the inner- 
most, the outermost, and the local strategies ^. CARIBOO consists of two main 
parts : 

(1) The proof procedure, written in ELAN, which is a direct translation of the 
inference rules. It generates the proof trees, dealing with the ordering and 
the abstraction constraints. It is worth emphasizing the reflexive aspect of 
this proof procedure, written in a rule-based language, to allow termination of 

rule-based programs. 

(2) A graphical user interface (GUI), written in .Java. It provides an edition tool 
to define specifications of rewrite systems which arc then transformed into an 
ELAN specification used by the proof procedure. It also displays the detailed 
results of the proof process : which defined symbols have already been treated 
and. for each of them, the proof tree together with the detail of each state. 
Trace files can be generated in different formats (HTML, ps, pdf...) 

To deal with the generated constraints, the proof process of CARIBOO can use 
integrated features, like the computation of usable rules, the use of the subterm 
ordering or the Lexicographic Path ordering to satisfy ordering constraints, and 
the test of sufficient conditions of Section 4.4 for detecting unsatisfiability of A. 

It can also delegate features, as solving the ordering constraints or orienting 
the usable rules when the LPO fails, proving termination of a term, or testing 
satisfiability of A. Delegation is either proposed to the user, or automatically 
ensured by the ordering constraint solver C«me2. 

CARIBOO provides several automation modes for dealing with constraints. Deal- 
ing with unsatisfiability of A allows a complete automatic mode, providing a termi- 
nation proof for a large class of examples (a library is available with the distribution 
of CARIBOO). 

It is interesting to note that thanks to the power of induction, and to the help 
of usable rules, the generated ordering constraints are often simple, and are easily 
satisfied by the subterm ordering or an LPO. 

Finally, the techniques presented here have also been applied to weak termination 
in [Fissore et al. 2004b]. 

As our proof process is very closed to the rewriting mechanism, it could easily be 
extended to conditional, equational and typed rewriting, by simply adapting the 
narrowing definition. Our approach is also promising to tackle inductive proofs of 
other term properties like confluence or ground reducibility. 



^Available at http://protheo.loria.fr/softwares/cariboo/ 
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APPENDIX 

A. THE LIFTING LEMMA 

The lifting lemma for standard narrowing [Middeldorp and Hamoen 1994] can be 
locally adapted to S'-rcwriting with non-normalized substitutions provided they 
fulfill some constraints on the positions of rewriting. To do so, we need the following 
two propositions (the first one is obvious). 

Proposition A.l. Lett G T{J^,X) and a a substitution ofT{J^,X). Then 
Var{at) = {Var{t) — Dom{a)) U Ran{avar{t))- 

Proposition A. 2. Suppose we have substitutions a,fi,u and sets A,B of vari- 
ables such that {B — Dom{a)) U Ran{a) C A. If ii = y[A\ then fxa = valB]. 

Proof. Let us consider {fia)B, which can be divided as follows: {l-tcr)B = 

— Dom{(j) • 

For X & B f\ Dom{a), we have Var{ax) C Ran{a), and then {fia)x = ii{ax) = 

I^Rania)icrx) = [HRan(a)(^)x. Therefore {lJL(j)BnDom(a) = 
{lJ'Ran(<T)(^) BnDom{a)- 

For X e B — Dom{a), we have ax = x, and then {^a)x = fjb{(jx) = fix. Therefore we 

have {p(j)B-Dom{a) = l^B-Dom(a)- Henceforth we get {iJ.u)b = {lJ-Ran(u)(^)BnDom(a) 
^IJ'B-Dom(a)- 

By a similar reasoning, we get {va)B = {vRan(a)cr)BnDom(a) U VB~Do7n(a)- 
By hypothesis, we have Ran{a) C A and /i = i'[A\. Then fJ^Rania) — ^flan(cr)- Like- 
wise, since B - Dom,{a) C A, we have HB-Dom(<7) = '^B-Dom(a)- 

Then we have (/XCr)B = {^J'Rania)(^)BnDomia) ^iJ-B-Dom(a) = 

{vRan(a)(^)BnDom(a) U VB-Domia) = (z^o-)s. Therefore (/xcr) = {vct)[B]. □ 

Lemma 4.3.1 (S'-lifting Lemma). Let TZ be a rewrite system. Let s e T{T, X), 
a a ground substitution such that as is S -reducible at a non variable position p of 
s, and y X a set of variables such that Var{s) U Dom{a) C y. If as — >p t' , 
then there exist a term s' e T(^, X) and substitutions /?, cr = ctq A Aje[i k] ^ ^'^^^ 
that: 

1- s-^li^^^^ s', 

2. /3s' = t', 

3. Pao = a[y] 

4. P satisfies Aje[i..fe] o7- 

where ctq is the most general unifier of s\p and I and (Tj.j G [l..k] are all most 
general unifiers of aos\p> and a left-hand side /' of a rule of TZ, for all position p' 
which are S-better positions than p in s. 

Proof. In the following, we assume that y D Var{l) = for every Z ^ r G 72.. 

If as t', then there exists a substitution t such that Dom{T) C Var{l) and 

{as)\p = tI. Moreover, since p is a non variable position of s, we have {as)\p = 
a{s\p). Denoting fj, = ar, we have: 
H{s\p) = a{s\p) for Dom{T) C Var{l) and Var{l) D Var{s) = 

= tI by definition of r 

= III for Dom{a) C 3; and :y n Var{l) = 0, 
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and therefore s\p and / are unifiable. Let us note ctq the most general unifier of s\p 
and I, and s' = <To{s[r]p). 

Since ctq is more general than /i, there exists a substitution p such that pcrg = /tx. 
Let yi = {y - Dom{ao)) U Ran{ao). We define (3 = py^. Clearly Dom{l3) C y^. 
We now show that Var(s') C 3^1, by the following reasoning: 

— since s' = ao{s[r]p), we have Var(s') = Var{ao{s[r]p)); 

— the rule I ^ r is such that Var(r) C Var{l), therefore we have Var{ao{s[r]p)) C 
Var{ao{s[l]p)), and then, thanks to the previous point, Var(s') C Var{ao{s[l]p)); 

— since (7q{s[1]p) = CTos[cro^]p and since cto unifies I and .s|p, we get (To(s[/]p) = 
(c7os)[cro(s|p)] p — oqs\s\^p — oqs and, thanks to the previous point: Var(s') C 

— according to Proposition A.l, we have Var(o-o(s)) = (Var(s) —Dom{ao)) U 
i?an((Tovar(s)); by hypothesis, Var(s) C y. Moreover, since Ran{aovar{s)) ^ 
Ran{ao), we have 

Var(cro(s)) C (3^ — £)om(cro)) Ui?an(cro), that is Var(cros) C 3^1. Therefore, with 
the previous point, we get Var{s') C yi. 

From Dom{P) C and Far(s') C J^i, we infer Dom{l3) U Far(s') C ^^i. 

Let us now prove that (is' = t' . 
Since /3 = py^, we have /3 = p\yi\- Since yar(s') C y^^ we get /?s' ps' . Since 
s' = 170(5^^), we have ps' = pao{s[r]p) = lJt{s[r\p) = /is[/ir]p. Then (3s' = ijLs[iir\p. 
We have Dom{T) C Var{l) and 3^ n Var{l) = 0, then we have y D Dom{T) = 0. 
Therefore, from fi = ar, we get fi = a[y]. Since Var(s) C 3^, we get ^s = as. 
Likewise, by hypothesis wc have Dom{a) C y, Var{r) C Var{l) and ynVar{l) = 0, 
then we get Var{r) n Dom{a) = 0, and then we have p = T\yar{r)], and therefore 
/ur = TV. 

From us = as and fir = rr wc get ps[pr]p = as[Tr]p. Since, by hypothesis, 
as t', with tI = {as)\p, then as[Tr]p = t' . Finally, as (Is' = iJ,s[iJ,r]p, we get 
Ps'=t' (2). 

Next let us prove that (i<jQ = a[y]. Reminding that = (3^ — Dom,{(TQ)) U 
Ran{ao), Proposition A. 2 (with the notations A for 3^i, B for y, p, for /?, ly for p 
and cr for ctq) yields /3cro = /50"o[37]. We already noticed that p = a[y]. Linking 
these two equalities via the equation prTQ = p yields /3a"o = '^■[y] (3)- 

Let us now suppose that there exist a rule I' ^ r' £ TZ, a, position p' S'-better 
than p and a substitution cTj such that cri{ao{s\p')) = a^l'. 

Let us now suppose that /? does not satisfy Aje[i fc] There exists i G [l..k] such 
that /3 satisfies ctj = Aj,e[i..„](a;i, = Ui,). So /? is such that Ai,G[i..n]('^^*i = (3ui,)- 

Thus, on Dom{(3) C] Dom{ai) C {xi,,z; S [l..n]}, we have (/Jx^, = Pui^), so 
/3(Ti = /3. Moreover, as /3 is a groimd substitution, ai() = /3. Thus, ()(7i = (Ti(3. 

On Dom{(3) U Dom{ai) — {Dam{(3) D Domiai)), either ^ = Id, or cTj = JcZ, so 
(3ai = ai(3. 

As a consequence, q;(s) = (Tia(s) = (Ti/3(To(s) = /3(Ti(Jo(s) is reducible at position 
p' with the rule which is impossible by definition of S-rcducibility of a{s) at 
position p. So the ground substitution (3 satisfies Ai6[i fc] ^ '^'-"^ most general 
unifiers ct, of cfqs and a left-hand side of rule of TZ at 5-better positions oip (4). 
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Therefore, denoting a = oq f\ Aig[i k] from the beginning of the proof, we get 
s i^j. ^] s', and then the point (1) of the current lemma holds. □ 

B. PROOF OF THE GENERIC TERMINATION RESULT 

Let us remind that SUCCESS{g, y) means that the application of Strat— Rules (S) 
on {{g{xi, . . . ,Xm)}, T, T) gives a finite proof tree, whose sets C of ordering con- 
straints are satisfied by a same ordering and whose leaves are either states of 
the form (0, A, C) or states whose set of constraints A is unsatisfiable. 

Theorem 5.4.1. Let R he a rewrite system on a set T of symbols containing 

at least a, eonstructor constant. If there exists an T-stahle ordering >- having the 
subterm property, such that for each symbol g e 'Def, we have SUCCESS {g,>-), 
then every term ofT{!F) terminates with respect to the strategy S. 

Proof. We use an emptyness lemma, an abstraction lemma, a narrowing lemma, 
and a stopping lemma, which are given after this main proof. 

We prove by induction on T{T) that any ground instance 9f{xi, . . . , Xm) of any 
term f{xi, . . . , Xm) G T{J^, X) S-terminates. The induction ordering is constrained 
along the proof. At the beginning, it has at least to be ^-stable and to have the 
subterm property, which ensures its noetherianity. Such an ordering always exists 
on T{!F) (for instance the embedding relation). Let us denote it 

If / is a constructor, then 6'/(a:;i, . . . ,Xm)l = f{Oxi, . . . ,9xrri)i = [f{Bxi, . . . ,6xm) 
[^a^iiljij . . . [6'a;ipJ,]ip]J,, where {ii, . . . ,ip} G [l..m] are the highest positions in f{9x\, 
. . . , Oxm), where subterms can be normalized, according to the strategy S. (More 
specifically, {ii, . . . , ip} = [l..m] if S = Innermost or S = Outermost, {ii, . . . , ip} 
= {j\ 3 e {pi, . . ■Pn},j + 0} where [pi, . . . ,p„] = LS{f ) \i S = Local- Strat .) 

By subterm property of we have Of{x\, . . . , a;^) = f{Oxi, . . . , Oxm) >- 6xi^ , 
. . . , 9xi^ . Then, by induction hypothesis, we suppose that Oxi-^ , • • • , Oxi^ S-terminatc, 
and so their respective normal forms Oxi^l, . . . , 9xi^\, exist and f{9xi, . . . ,9xm) 
[^Xi^ J,]ii . . . [^ajjp J.]jp is in normal form. We may thus restrict our attention to terms 
headed by a defined symbol. 

If / is not a constructor, let us denote it g and prove that g{9xi, . . . , 6xjn) S- 
terminates for any 9 satisfying A = T if we have SUCCESS— S(h, for every 
defined symbol h. Let us denote g{xi, . . . ,Xm) by tref in the sequel of the proof. 

To each state s of the proof tree of g, characterized by a current term t and the 
set of constraints A, we associate the set of ground terms G = {at \ a satisfies A}, 
that is the set of ground instances represented by s. 

Inference rule Abstract (resp. Nairrow) transforms {{t},A) into {{t'},A') to 
which is associated G" = {(3t' \ (3 satisfies A'} (resp. into {{t'j},A^),i € to 
which are associated G' = {Pit^ \ Pi satisfies A'-}). 

By abstraction (resp. narrowing) Lemma, applying Abstract (resp. Narrow), 
for each at in G, there exists a /3t' (resp. /3it') in G' and such that S-termination 
of Pt' (resp. of the /Jjf-) implies S-termination of at. 

When the inference rule Stop applies on {{t}, A, G): 
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— either A is satisfiable, in which case, by stopping lemma, every term of G = 
{at I a satisfies A} is S-terminating, 

— or A is unsatisfiable. In this case, G is empty. By emptyness lemma, all pre- 
vious states on the branch correspond to empty sets G,, until an ancestor state 
{{tp},Ap,Cp), where Ap is satisfiable. Then every term at of Gp is irreducible, 
otherwise, by Abstraction and Narrowing lemmas, Gp+i would not be empty. 

Therefore, S-termination is ensured for all terms in all sets G of the proof tree. 

As the process is initialized with {tref} and a constraint problem satisfiable by 
any ground substitution, we get that g{9xi, . . . ,0Xm) is S-terminating, for any 
tref = 9{xi, ■ ■ ■ , Xm), and any ground instance 9. □ 



Lemma (Emptyness lemma). Let {{t},A,G) be a state of any proof tree, giv- 
ing {{t'}, A' ,C') by application 0/ Abstract or Narrow. If A is unsatisfiable, then 
so is A! . 

Proof. If Abstract is applied, then if A is unsatisfiable, A! = A K t\i^\ = 
Xi^ ... A t\i^i = is also unsatisfiable. 

If Narrow is applied, then if A is unsatisfiable (which does not occur for local 
strategies). A' = A Act in the innermost case, and A' = R{t)AAAa in the outermost 
case are also unsatisfiable. □ 



Lemma (Abstraction lemma). Let {{t},A,G) be a state of any proof tree, 
giving the state {{t' = i[-'^j]jG{ii,...,ip}}, A',G') by application 0/ Abstract. 

For any ground substitution a satisfying A, if at is reducible, there exists (3 such 
that S -termination of j3t' implies S-termination of at. Moreover, [3 satisfies A'. 

Proof. We prove that at fit' , where /3 = a U Uje{ii,...,j } -^i ~ OLt\ji. 
First, whatever the strategy S, the abstraction positions in t are chosen so that 
the at\j can be supposed terminating w.r.t. S. Indeed, each term t\i^ is such that: 

—either TERMINUS, t\j) is true, and then by definition of the predicate TERMIN, 
at\j S-terminates; 

— or tref > t\j is satisfiable by y, and then, by induction hypothesis, at\j S- 
terminates. 

So the at\jiexist. 

Then, let us consider the diflFerent choices of abstraction positions w.r.t the strat- 
egy S: 

— either S = Innermost, and whatever the positions ii,. . . ,ip in the term t, we 
have at ^*^"" at[atU,l]^, . . . [at\,^l]i^ = (3t'; 

— either S = Outermost and t is abstracted at positions ii, . . . ,ip if *[-^j]je{ii,...,ip} 
is not outermost narrowablc at prefix positions of ii, . . . , ip, which warrants that 
the only redex positions of at are suffixes of the j, and then that at -^*Outermost 
at[at\i^i]i^ . . . [at\i^i]i^ = (3t'; 
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— or S = Local— Strat and top{t) = f with LS{f) = [pi, . . . ,Pn]- The term t is 
abstracted at positions ii, . . . ,ip € {pi, . . . ,pk-i}, if 3fc e [2..n] : pi,. . . ,Pk-i 7^ 
0,Pk = 0, or at positions ii, . . . ,ip £ [pi, . . . ,Pn} if Pi, • • • ,Pn 7^ 0. According to 
the definition of local strategies, at ^*Local-Strat at[at\i^i]i^ . . . [at\i^i]i^ = (if. 
If LS{f) = or LS{f) = [0,p2, ...,Pn], then t = t' and A = A', so at = I3t' . 

So at — s.*'S' f^t' for any normal form at\ji of af|j, for j e {ii, . . . ,ip]}. Then, 
S-termination of 0t' implies S-termination of at. 

Clearly in all cases, (3 satisfies A' = A A t\i^[ = Xi^ ... A t\i^[ = Xi^, provided 
the Xi are not in Dom(a), which is true since the X^ are fresh variables not 
appearing in A. 



Lemma (narrowing lemma). Let {{t},A,C) be a state of any proof tree, giv- 
ing the states ({wi}, A[,C[).i G [1../], by application 0/ Narrow. For any ground 
substitution a satisfying A, if at is reducible, then, for each i £ [l--/], there ex- 
ist Pi such that S-termination of the (3iVi,i G [l--/], implies S-termination of at. 
Moreover, Pi satisfies A'^ for each i € [1../]. 

Proof. We reason by case on the different strategies. 

— Either S = Innermost, and By lifting lemma, there is a term v and substitutions 
P and (T = ctq A Aje[i k] corresponding to each rewriting step af{ui, . . . , Um) 
^p'l'lr such that: 

1. t = f{u^,...,U^)^';}Zr,a^^ 

2. Pv = t', 

3. pao = a[y] 

4. p satisfies Aje[i..fe] ^• 

where ctq is the most general unifier of t\p and I and aj,j G [l..k] are all most 
general unifiers of aot\p' and a left-hand side I' of a rule of TZ, for all position p' 
which are sufiix positions of p in 

These narrowing steps are effectively produced by the rule Narrow, applied in 
all possible ways on /(ui, . . . , Um)- So a term Pv is produced for every innermost 
rewriting branch starting from at. Then innermost termination of the Pv implies 
innermost termination of at. 

Let us prove that P satisfies — ^ A ctq A Aj£[i..fe] 

By lifting lemma, we have a = Pao on y. As we can take y 3 Var{A), we have 

a = P(Tq on Var{A). 

More precisely, on Ran{ao), P is such that Pao = a and on Var{A) \ Ran{ao), 
P = a. As Ran{ao) only contains fresh variables, we have Var{A)r\Ran{ao) — 0, 
so Var{A) \ Ran{ao) = Var{A). So /3 = a on Var{A) and then, P satisfies A. 
Moreover, as Pao = a on Dom{ao), P satisfies ao- 

So P satisfies AAao- Finally, with the point 4. of the lifting lemma, we conclude 
that P satisfies A' = A A ao A Aje[i k] 
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— Either S = Local— Strat, and Narrow is applied on {t = f{u\, . . . , Um)} with 
/ = [0,pi, . . . ,Pn\- For any a satisfying A, 

- cither af(ui. . . . .u„i,) is irreducible at the top position, but may be reduced 
at the positions pi, . . . ,pn- In this case, either f{ui, . . . , Um) is not narrowable 
at the top position, either f{ui, . . . ,Um) '^e,Ci Vi for i € [l.i] and A A cji is 
unsatisfiable for each i, or there exists i G [1..Z] such that /(mi, . . . , Mm) '^e.o-i 
and AAai'is satisfiable. 

In the first two cases. Narrow produces the state - A, C), and 

setting /3 = a, we obtain that termination of implies termination of 

Q,^[o,pi,...,p„]^ and that (3 satisfies A' = A. 

In the third case. Narrow produces the state ({tl^'^'-'-'P"!}, A A (Ai=i^))C'), 
and setting /3 = a, we have termination of - implies termination of 

Q,^[o,pi, Moreover, as at is not reducible at the top position, a = (3 
satisfies (Ai=i Thus, as a satisfies A, j3 satisfies A' = A /\ 
— or af{u\, . . . ,Um) is reducible at the top position, and by lifting lemma, there 
is a term v and substitutions /3 and ao corresponding to each rewriting step 
af{ui, . . . , Um) —*t,i^r t', such that: 

1. t = f{Ui, Um) ^t,l^r,ao V, 

2. pv = t', 

3. f3ao = a[y]. 

where ao is the most general unifier of t and /. 

These narrowing steps are effectively produced by Narrow, which is applied 
in all possible ways on . . . ,Um) at the top position. So a term f3v is 
produced for every LS-rewriting step applying on at at the top position. Then 
termination of the Pv implies termination of at for the given LS-strategy. 
We prove that /3 satisfies A A ao like in the innermost case, except that there 
is no negation of substitution here. 

— Or S = Outermost, and in this case, t = /(«!,...,«„) is renamed into to = 
/(til, . . . , Un)P. A then becomes Aq = Au . . . , where p = {xi 

x[)...{xk x'^^). 

We first show that if every poto outermost terminates, for jSo satisfying Ao, then 
every at outermost terminates. 

If A is satisfiable, then Ao is satisfiable. Indeed, Ao = AU f{ui, . . . ,Um) -»* 
/(ui, . . . , Um)'', with p = {xi -»* x[) . . . (xfe -»* x'^.). In addition, the Xi are the 
variables of /(ui, . . . , 

li A = T, then Aq = f{ui, . . . , Um.) -»* f{ui, ■ . ■ , Um)'' , which is always satisfi- 
able. li A , since they are the variables of f{u\, . . . , the Xi can appear 
in A, either in abstracted subterms, either as new abstraction variables, either 
in the right hand-sides of equalities and disequalities defining the substitution 
of the previous narrowing step, or as new variables introduced by the previous 
reduction renaming step. In any case, the formula in which they appear is com- 
patible with /(iti, . . . , Um) f{ui, . . . , Um)'' ■ More precisely, for the Oxi such 
that 6 satisfies A, 6 can be extended on the variables x'^, in such a way that Aq 
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is satisfiable. Then Aq = AU f{u\, . . . , Um) f{ui, ■ ■ ■ , UmY is satisfiable. 

By definition of Aq, the /3o are the a verifying the reduction formula /(ui, . . . , Um) 
f{ui, . . . ,UmY, with p = {xi ^* x'-^) . . . {xk ^* x'j^). We have Dom{a) = 
Var{A) U {xi, . . . ,Xk}- The domain of /3o is Dom{a) U {x'^, . . . Then 
/3o = ct [-Dom(a)] and by definition of the reduction formula, the j3Qx[ are such 
that t[/3oa:i]pi ■ • • [/3oa^fe]pfc is the first reduced form of af{ui, . . . , in any outer- 
most rewriting chain starting from af{u\, . . . , w„), having an outermost rewriting 
position at a non variable position of f{ui, .... 

Then, by definition of the outermost strategy, the /3o<o represent any possible 
outermost reduced form of at just before the reduction occurs at a non variable 
occurence of /(ui, . . . , u„). Thus, outermost termination of the /3oio implies out- 
ermost termination of the at. 

Then tg is narrowed in all possible ways into terms Vi at positions Pi with substi- 
tutions (Tj, provided pi and cxj satisfy the outermost narrowing requirements, as 
defined in Definition 4.3.2. We now show that if /3oto is reducible, then there exist 
(3i satisfying A' such that outermost termination of the l3iVi implies outermost 
termination of /3o^o- 

We have poto ^^Hr *' and p € O{to) since to = tP. 

By lifting lemma, there is a term v and substitutions (3 and a = ao A Aje[i k] 
corresponding to each rewriting step ato — t' , such that: 

1. to -°r-i... V, 

2. Pv = t', 

3. 0ao = Po[y] _ 

4. (3 satisfies /\je[i..k] ^■ 

where ao is the most general unifier of to\p and I and aj,j G [1..A:] are all most 
general unifiers of aoto\p' and a left-hand side I' of a rule of TZ, for all position p' 
which are prefix positions of p in to. 

These narrowing steps are effectively produced by the rule Narrow, applied in 

all possible ways. So a term (3v is produced for every outermost rewriting branch 
starting from Potg. Then outermost termination of the f3v implies outermost 
termination of f3oto- 

We prove that f3 satisfies A' = Aq A ctq Aj£[i k] ^ ^^^^ '^^ innermost case. 

□ 



Lemma (Stopping lemma). Let {{t},A,C) be a .state of any proof tree, with 
A satisfiable, and giving the state (0, A',C") by application of an inference rule. 
Then for any ground substitution a satisfying A, at S-terminates. 

Proof. The only rule giving the state (0, A' , C) is Stop. When Stop is applied, 
then 

— either TERMIN{S, t) and then at S-terminates for any ground substitution a, 
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— or {tref > t) is satisfiable. Then, for any ground substitution a satisfying A, 
atref >- ctt. By induction hypothesis, at S-terminates. 

□ 

C. THE USABLE RULES 

To prove Lemma 6.2.1, we need the next three lemmas. The first two ones are 
pretty obvious from the definition of the usable rules. 

Lemma C . 1 . Let TZ be a rewrite system on a set T of symbols and t S T{J^, X U 
Xa)- Then, every symbol f & occuring in t is such that Rls{f) C U{t). 

Proof. We proceed by structural induction on t. 

— If t € X \J Xa, the property is trivially true; 

— if t is a constant a, U{t = a) = Rls{a) U;^reflZs(a) U{r); the only symbol of t is 
a, and we have Rls{a) Cl((t). 

Let us consider a non-constant and non- variable term t € T{!F,X U Xa), of 
the form /(tti, . . . ,m„). Then, by definition of U{t), we have U(t) = Rls(f) Uf^i 
U{ui) U;^reras(/) ^('')- Then, whatever g symbol of t, either g = f and then 
Rls{g) C U{t), or 5 is a symbol occuring in some Ui and, by induction hypothesis 
on Ui, Rls{g) C U{ui), with U{ui) C U{t). □ 

Lemma C.2. Let TZ be a rewrite system on a set T of symbols and t G T{J^, X\J 
Xa). Then l^re U{t) U{r) C U{t). 

Proof. According to the definition of the usable rules, if a term t is such that 
Var{t) (1X^9, then U{t) = TZ, and then the property is trivially true. We will 
then suppose in the following that t docs not contain any variable of X. 

Let I r GU{t). By definition oiU{t), since Var(f) fl A" = 0, among all recursive 
applications of the definition oiU in U{t), there is an application U{t') ofU to some 
term t' such that U{t') = Rls{g) Ui U{t'\i) Ui,^r'eRls(g) U{r'), with U{t') C U{t), 
and I ^ r £ Rls{g), with g = top{l). 

Since I ^ r € Rls{g), by definition o{U{t'), we have i/(r) C U;'_>r'£ras(g)W(r'), 
and then U{r) C l{{t') C U{t). □ 

Lemma C.3. Let TZ be a rewrite system on a set T of symhols and, t G T{J-, XL) 
Xa)- Whatever a ground normalized substitution and at ^p^^^i^^n ti ^p2,i2^r2 
t2 — > . . . -^pn,in^r„ tn rewrite chain starting from at, the defined symbol oftk, 1 < 
k < n at a redex position oftk is either a symbol oft or one of the ri,i e [1..A;]. 

Proof. Wc proceed by induction on the length of the derivation. The property 
is obviously true for an empty derivation i.e. on at. 

Let us show the property for the first rewriting step at -^p^^i^^n ti. By definition 
of rewriting, 3a : ali = at\p^ and ti = a.t[ari]p-^. Let / be the redex symbol of ti 
at a position p, and let us show that / comes either from t or from ri . 

Since ti = at[ari]p^, either p is a position of the context Q;t[]pi, which does not 
change by rewriting, so wc already have / as redox symbol of at at position p. As 
a is normalized, p is a position of t, so / is a symbol of t. 

Either p corresponds in ti to a non variable position of ri , so / is a symbol of ri . 
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Or p corresponds in ti to a position r in ax, for a variable x G Var{ri) at 
position q in n: we have p = p\qr. In this case, since Var(ri) C Var{l\), we have 
X e Var(;i), so era; is also a subterm of at, and / occurs in at at position = piq'r, 
where q' is a position of a; in h. 

Moreover, as p is a redex position in ti, then by definition of the innermost 
strategy, there is no suffix redex position of p in ti. As ti\p = at\p', then similarly 
p' is a redex position in at. As a is normalized, p' is a position oft, so / is a symbol 
of t. 

Then, let us suppose the property true for any term of the rewrite chain at 
^pi^ji^ri ti . . . —^pk,ik^rk ^ki i-G- any redex symbol / of t^ is also a symbol of t, 
or a symbol of one of the ri,i e and let us consider t^ ^pfc+i,ifc+i-»rfc+i ifc+i- 

By a similar reasoning than previously, we establish that any redox symbol / of 
tk+i is also a symbol of tk, or a symbol of r^+i- We then conclude with the previous 
induction hypothesis. □ 

We are now able to prove Lemma 6.2.1. 

Lemma 6.2.1. LetTZ be a rewrite system on a set T of symbols andt € T{T,XU 
Xji). Whatever at ground instance of t and at ^p^^i^^ri ti ^P2,i2^r2 ^2 
■ ■ ■ ~^Pn,ln^r„ tn rewrite chain starting from at, then h —>■ ri G U{t), V? £ [l..n]. 

Proof. If a variable x G X occurs in t, then U{t) = TZ and the property is 
trivially true. Wc then consider in the following that t G T{J-, Xa), and then that 
a is a (ground) normalized substitution. 

Wc proceed by induction on T{ J-, Xa) and on the length of the derivation. 

The property is trivially true if at is in normal form. For any at -^p-^^i-^-^n ti, 
since a is normalized, pi corresponds in at to a non-variable position of t. Let / 
be the symbol at position pi in t. Since / is the symbol at the redex position pi of 
at with the rule li ri, then ^ ri e Rls{f). Moreover, thanks to Lemma C.l, 
Rls{f) C U{t). Therefore, Zi ^ ri € U{t). 

Let us now suppose the property is true for any derivation chain starting from at 
whose length is less or equal to fc, and consider the chain: at ^p-^j^^n ti -^p2,i2^r2 
t2 ■•• -^Pk,h^rk tk ^pk+uik+i^Tk+i tk+1- Let / be the symbol at position 
Pk+i in tk- Since Pk+i is a redex position of tk with the rule Ik+i rk+i, then 
Ik+i rk+i G Rls{f). 

By Lemma C.3 with a derivation of length k, we have two cases: 

— either the symbol / at position Pk+i in tk is a symbol of t; then, thanks to 
Lemma C.l on t, we get Rls{ f) C U{t); henceforth Ik+i rk+i G U{t); 

— or the symbol / at position pk+i in tk is a symbol of a r^, z G [l..fc]; then, thanks 
to Lemma C.l on n, we get Rls{f) C U{ri); henceforth Ik+i rk+i G U{ri); by 
induction hypothesis we have k ^ ri € U{t) and, thanks to Lemma C.2, we have 
U{ri) C U{t). Henceforth Ik+i rk+i G U{t). 

□ 

Proposition 6.2.1. Let TZ be a rewrite system on a set T of symbols, and t 
a term of T{T,X U Xa)- If there exists a simplification ordering >- such that 
yi ^ r & U{t) : I y r, then any ground instance oft is terminating. 
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Proof. As >- orients the rules used in any reduction chain starting from at for 
any ground substitution a, by properties of the simphfication orderings, >- also 
orients the reduction chains, which are then finite. □ 

D. A LEMMA SPECIFIC TO THE OUTERMOST CASE 

Lemma 7.3.1. Let {{ti}, Ai,Ci) be the z*^ state of any branch of the derivaMon 
tree obtained by applying the strategy S on {{tref}, T, T), and >- an J^-stable order- 
ing having the subterm property. If every reduction formula in can be reduced 
to a formula /\j Xj = x'j, then we have: 

for all variable x of ti in X: {tref > x)/Ai is satisfiable by 

Proof. The proof is made by induction on the number i of applications of the 
inference rules from {{tref}, T, T) to the state {{ti}, Ai, Ci). 

Let us prove that the property holds for i = 0. We have to = tref and then 
Va,r{t{)) = V ar{trej')- Consequently, for every x € Var{tQ), whatever the ground 
substitution a such that Var{tref) Q Dom{a), ax is a subterm of atref- The 
induction ordering >~ satisfying the conditions of the rules before the application 
of these rules can be any .?^-stable ordering having the subterm property. We then 
have atref >- ocx. 

We now prove that if the property holds for i — 1, it also holds for i. 

If the rule used at the i*^ step is Stop, then Var{ti) = 0, and then, the property 
is trivially verified. 

If the rule used at the i*^ step is Abstract, as the rule Abstract replaces sub- 
terms in ti-i by new variables of Xa, then {yar{ti)f\X) C {V ar{ti-\) f\ X) , so the 
property still holds. 

If the rule used at the i*'' step is Narrow then, by hypothesis, the reduction 
renaming applied to ti-\ and giving a term t'j__i just consists in a mere renaming 
of the variables of ti-\. Let ti be a term obtained by narrowing t-_j^ with the 
substitution cr. 

Let z e Var{ti), and a a substitution satisfying Aj. We show that atref >- ctz. 
We have two cases. 

Either z is a fresh variable introduced by the narrowing step. Let x' S Var{t[_^) 
such that z G Var{ax'), and x G Var{ti-i) such that x' is a renaming of x. By 
hypothesis, every reduction formula in Ai can be reduced to a formula f\- xj — x'j . 
This is then the same for Ai-i. Moreover, since a satisfies A^, then it satisfies in 
particular Ai-i. Then, by induction hypothesis, atref >- olx and, since a satisfies 
a; = a;', we also have atref >- olx' . 

By hypothesis, a contains the equality x' = C[z], with C\z\ a (possibly empty) 
context of z. Moreover, by definition of the rule Narrow, Ai = Ai-i A R{ti-i) A a. 
So Ai contains the equality x' = C[z]. 

Then, as a satisfies Ai, a is such that ax' = aC[z]. Since atref ^ oix', we have 
atref >- C(C[z] and then, by subterm property, atref >- olz. 

Or 2 G Var(i-_j) ; by the same reasoning as in the previous point for a;', we have 

atref )^ OtZ. □ 
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